Description
Aavmker4.sys in avast! 4.8 through 4.8.1368.0 and 5.0 before 5.0.418.0 running on Windows 2000 and XP does not properly validate input to IOCTL 0xb2d60030, which allows local users to cause a denial of service (system crash) or execute arbitrary code to gain privileges via IOCTL requests using crafted kernel addresses that trigger memory corruption.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by ryujin · pythonlocalwindows
https://www.exploit-db.com/exploits/12406
References (9)
Core 9
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/38363
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://osvdb.org/62510
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/38689
Vendor Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2010/0449
Vendor Advisory x_refsource_confirm
http://forum.avast.com/index.php?topic=55484.0
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/509710/100/0/threaded
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id?1023644
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/38677
Various Sources x_refsource_misc
http://www.trapkit.de/advisories/TKADV2010-003.txt
Scores
EPSS
0.0021
EPSS Percentile
42.9%
Details
CWE
CWE-20
Status
published
Products (25)
avast/avast_antivirus_home
4.8.1169
avast/avast_antivirus_home
4.8.1195
avast/avast_antivirus_home
4.8.1201
avast/avast_antivirus_home
4.8.1227
avast/avast_antivirus_home
4.8.1229
avast/avast_antivirus_home
4.8.1282
avast/avast_antivirus_home
4.8.1290
avast/avast_antivirus_home
4.8.1296
avast/avast_antivirus_home
4.8.1335
avast/avast_antivirus_home
4.8.1351
... and 15 more
Published
Feb 25, 2010
Tracked Since
Feb 18, 2026