Shodan
Vulnerabilities
Vulnerable Software
Avast:  >> Avast Antivirus Home  Security Vulnerabilities
CVE-2010-0705
Aavmker4.sys in avast! 4.8 through 4.8.1368.0 and 5.0 before 5.0.418.0 running on Windows 2000 and XP does not properly validate input to IOCTL 0xb2d60030, which allows local users to cause a denial of service (system crash) or execute arbitrary code to gain privileges via IOCTL requests using crafted kernel addresses that trigger memory corruption.
CVSS Score
7.2
EPSS Score
0.003
Published
2010-02-25
CVE-2009-4049
Heap-based buffer overflow in aswRdr.sys (aka the TDI RDR driver) in avast! Home and Professional 4.8.1356.0 allows local users to cause a denial of service (memory corruption) or possibly gain privileges via crafted arguments to IOCTL 0x80002024.
CVSS Score
7.2
EPSS Score
0.004
Published
2009-11-23
CVE-2009-3522
Stack-based buffer overflow in aswMon2.sys in avast! Home and Professional for Windows 4.8.1351, and possibly other versions before 4.8.1356, allows local users to cause a denial of service (system crash) and possibly gain privileges via a crafted IOCTL request to IOCTL 0xb2c80018.
CVSS Score
7.2
EPSS Score
0.005
Published
2009-10-01
CVE-2009-3523
aavmKer4.sys in avast! Home and Professional for Windows before 4.8.1356 does not properly validate input to IOCTLs (1) 0xb2d6000c and (2) 0xb2d60034, which allows local users to gain privileges via IOCTL requests using crafted kernel addresses that trigger memory corruption, a different vulnerability than CVE-2008-1625.
CVSS Score
6.9
EPSS Score
0.002
Published
2009-10-01
CVE-2009-3524
Unspecified vulnerability in ashWsFtr.dll in avast! Home and Professional for Windows before 4.8.1356 has unknown impact and local attack vectors.
CVSS Score
7.2
EPSS Score
0.001
Published
2009-10-01
CVE-2008-1625
aavmker4.sys in avast! Home and Professional 4.7 for Windows does not properly validate input to IOCTL 0xb2d60030, which allows local users to gain privileges via certain IOCTL requests.
CVSS Score
6.8
EPSS Score
0.001
Published
2008-04-02
CVE-2007-6265
Unspecified vulnerability in avast! 4 Home and Professional Editions before 4.7.1098 allows remote attackers to have an unknown impact via a crafted TAR archive.
CVSS Score
6.8
EPSS Score
0.006
Published
2007-12-07
CVE-2007-1673
unzoo.c, as used in multiple products including AMaViS 2.4.1 and earlier, allows remote attackers to cause a denial of service (infinite loop) via a ZOO archive with a direntry structure that points to a previous file.
CVSS Score
7.8
EPSS Score
0.013
Published
2007-05-09


Products
Pricing
Contact Us

Shodan ® - All rights reserved