GHSA-wr6q-9jvw-7c6w

Опубликовано: 01 мая 2022

Источник: github

Github: Не прошло ревью

Описание

aavmker4.sys in avast! Home and Professional 4.7 for Windows does not properly validate input to IOCTL 0xb2d60030, which allows local users to gain privileges via certain IOCTL requests.

Ссылки

https://nvd.nist.gov/vuln/detail/CVE-2008-1625
https://exchange.xforce.ibmcloud.com/vulnerabilities/41527
http://secunia.com/advisories/29605
http://www.avast.com/eng/avast-4-home_pro-revision-history.html
http://www.securityfocus.com/archive/1/490321/100/0/threaded
http://www.securityfocus.com/bid/28502
http://www.securitytracker.com/id?1019732
http://www.trapkit.de/advisories/TKADV2008-002.txt
http://www.vupen.com/english/advisories/2008/1034/references

EPSS

Процентиль: 25%

0.00084

Низкий

CVE ID

CVE-2008-1625

Связанные уязвимости

CVE-2008-1625

nvd

почти 18 лет назад

aavmker4.sys in avast! Home and Professional 4.7 for Windows does not properly validate input to IOCTL 0xb2d60030, which allows local users to gain privileges via certain IOCTL requests.

EPSS

Процентиль: 25%

0.00084

Низкий

CVE ID

CVE-2008-1625