avast! Professional Edition < 5.0.418 Local Privilege Escalation

This script is Copyright (C) 2010-2016 Tenable Network Security, Inc.

Synopsis :

The remote Windows host contains an application that is affected by a
local privilege escalation vulnerability.

Description :

The remote Windows host is running avast! Professional Edition. The
installed version of this software is potentially affected by a local
privilege escalation vulnerability because the 'aavmker4.sys' driver
fails to sufficiently sanitize user-supplied input passed via a
specially crafted IOCTL request.

See also :


Solution :

Upgrade to Avast! Professional Edition 5.0.418 or later.

Risk factor :

High / CVSS Base Score : 7.2
CVSS Temporal Score : 6.3
Public Exploit Available : false

Family: Windows

Nessus Plugin ID: 44876 (avast_5_0_418_local_priv_escalation.nasl)

Bugtraq ID: 38363

CVE ID: CVE-2010-0705

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now