Avast! 'aswRdr.sys' Buffer Overflow Vulnerability Network Vulnerability

Summary

This host is installed with avast! AntiVirus and is prone to Buffer Overflow vulnerability.

Impact

Successful exploitation could allow remote attackers to cause a Denial of Service or potentially gain escalated privileges. Impact Level: System/Application

Solution

Upgrade to avast! Home and Professional version 4.8.1367 or later For updates refer to http://www.avast.com/eng/download.html

Insight

The vulnerability is due to an error in 'aswRdr.sys' when processing IOCTLs. This can be exploited to corrupt kernel memory via a specially crafted 0x80002024 IOCTL.

Affected

avast! Home and Professional version 4.8.1356 and prior on Windows.

References

http://en.securitylab.ru/nvd/388054.php
http://secunia.com/advisories/37368/
http://www.efblog.net/2009/11/avast-aswrdrsys-kernel-pool-corruption.html
http://www.vupen.com/english/advisories/2009/3266

Updated on 2015-03-25

Severity

Classification

CVE CVE-2009-4049
CVSS Base Score: 7.2
AV:L/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

ACDSee FotoSlate PLP Multiple Buffer Overflow Vulnerabilities
ChaSen Buffer Overflow Vulnerability (Windows)
Adobe Audition '.ses' Multiple Buffer Overflow Vulnerabilities (Windows)
Adobe Reader 'Plug-in' Buffer Overflow Vulnerability (Linux)
BigAntSoft BigAnt IM Message Server Multiple Vulnerabilities

avast! 'aswRdr.sys' Buffer Overflow Vulnerability

Take action and discover your vulnerabilities