avast! Professional Edition < 4.8.1356 Multiple Vulnerabilities

This script is Copyright (C) 2009-2016 Tenable Network Security, Inc.


Synopsis :

The remote Windows host contains an application that is affected by
multiple vulnerabilities.

Description :

The remote Windows host is running avast! Professional Edition.

The installed version of avast! Professional Edition is potentially
affected by multiple issues :

- A local privilege escalation vulnerability because the
'avast4.ini' file is created with insecure permissions
on
setup. (CVE-2009-3524)

- A local privilege escalation vulnerability because the
'aswMov2.sys' driver fails to sufficiently sanitize
user-supplied input passed to 'IOCTL'. (CVE-2009-3522)

- A local privilege escalation vulnerability because the
'aavmKer4.sys' driver fails to sufficiently sanitize
user-supplied input passed to 'IOCTL'. (CVE-2009-3523)

See also :

http://www.securityfocus.com/archive/1/507375/30/0/threaded
http://www.securityfocus.com/archive/1/506681/30/0/threaded
http://www.ntinternals.org/ntiadv0904/ntiadv0904.html
http://www.nessus.org/u?0da112c9

Solution :

Upgrade to avast! Professional Edition 4.8.1356 or later.

Risk factor :

High / CVSS Base Score : 7.2
(CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 7.2
(CVSS2#E:ND/RL:U/RC:ND)
Public Exploit Available : true

Family: Windows

Nessus Plugin ID: 42261 (avast_local_priv_escalation.nasl)

Bugtraq ID: 36507
36796
36888

CVE ID: CVE-2009-3522
CVE-2009-3523
CVE-2009-3524

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now