Vulnerability Details CVE-2016-3986
Avast allows remote attackers to cause a denial of service (memory corruption) and possibly execute arbitrary code via a crafted PE file, related to authenticode parsing.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.161
EPSS Ranking 94.5%
CVSS Severity
CVSS v3 Score 7.8
CVSS v2 Score 9.3
References
- http://packetstormsecurity.com/files/136090/Avast-Authenticode-Parsing-Memory-Corruption.html
- https://code.google.com/p/google-security-research/issues/detail?id=668
- https://www.exploit-db.com/exploits/39530/
- http://packetstormsecurity.com/files/136090/Avast-Authenticode-Parsing-Memory-Corruption.html
- https://code.google.com/p/google-security-research/issues/detail?id=668
- https://www.exploit-db.com/exploits/39530/