Описание
Heap-based buffer overflow in the SIS unpacker in avast! Anti-Virus Managed Client before 4.7.700 allows user-assisted remote attackers to execute arbitrary code via a crafted SIS archive, resulting from an "integer cast around."
Ссылки
- US Government Resource
- Vendor Advisory
- US Government Resource
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 4.7.652 (включая)
Одно из
cpe:2.3:a:avas\!t:avast\!_antivirus:4.6.394:*:*:*:*:*:*:*
cpe:2.3:a:avast\!:avast\!_antivirus:*:*:*:*:*:*:*:*
EPSS
Процентиль: 97%
0.31219
Средний
9.3 Critical
CVSS2
Дефекты
CWE-119
Связанные уязвимости
github
почти 4 года назад
Heap-based buffer overflow in the SIS unpacker in avast! Anti-Virus Managed Client before 4.7.700 allows user-assisted remote attackers to execute arbitrary code via a crafted SIS archive, resulting from an "integer cast around."
EPSS
Процентиль: 97%
0.31219
Средний
9.3 Critical
CVSS2
Дефекты
CWE-119