SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Application (Security)  >   avast! Vendors:   ALWIL Software
avast! Products Heap Overflow in 'aswSnx.sys' Driver Lets Local Users Obtain System Privileges
SecurityTracker Alert ID:  1035093
SecurityTracker URL:  http://securitytracker.com/id/1035093
CVE Reference:   CVE-2015-8620   (Links to External Site)
Date:  Feb 24 2016
Impact:   Execution of arbitrary code via local system, Root access via local system

Version(s): 11.1.2245; possibly earlier versions
Description:   A vulnerability was reported in avast!. A local user can gain system privileges on the target system.

A local user can issue a specially crafted IOCTL request to the 'aswSnx.sys' driver to trigger a heap overflow and execute arbitrary code with SYSTEM level privileges on the target system.

Avast Internet Security, Avast Pro Antivirus, Avast Premier, and Avast Free Antivirus are affected.

The vendor was notified on December 23, 2015.

The original advisory is available at:

https://www.nettitude.co.uk/exploiting-a-kernel-paged-pool-buffer-overflow-in-avast-virtualization-driver

Kyriakos Economou of Nettitude reported this vulnerability.

Impact:   A local user can obtain system privileges on the target system.
Solution:   The vendor has issued a fix (11.1.2253).
Cause:   Boundary error
Underlying OS:  Windows (Any)

Message History:   None.


 Source Message Contents



[Original Message Not Available for Viewing]


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2019, SecurityGlobal.net LLC