Avira AntiVir File Handling Vulnerabilities

This script is Copyright (C) 2007-2016 Tenable Network Security, Inc.

Synopsis :

The remote Windows host contains an application that is affected by
multiple issues.

Description :

The remote host is running Avira AntiVir, an antivirus software

The version of AntiVir installed on the remote host is reportedly
prone to a buffer overflow in its LZH file processing code as well as
denial of service vulnerabilities when parsing UPX and TAR files. An
attacker may be able to exploit these issues to execute arbitrary code
on the remote host, likely with LOCAL SYSTEM privileges, to crash the
remote antivirus engine, or to cause the CPU to enter an endless loop.

See also :


Solution :

Use AntiVir's Update feature to upgrade to the latest version.

Risk factor :

Critical / CVSS Base Score : 10.0
CVSS Temporal Score : 8.7
Public Exploit Available : false

Family: Windows

Nessus Plugin ID: 25348 (avira_file_vulns.nasl)

Bugtraq ID: 24187

CVE ID: CVE-2007-2972

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now