Avast! 'aswRdr.sys' Buffer Overflow Vulnerability Network Vulnerability

Summary

This host is installed with avast! AntiVirus and is prone to Buffer Overflow vulnerability.

Impact

Successful exploitation could allow remote attackers to cause a Denial of Service or potentially gain escalated privileges. Impact Level: System/Application

Solution

Upgrade to avast! Home and Professional version 4.8.1367 or later For updates refer to http://www.avast.com/eng/download.html

Insight

The vulnerability is due to an error in 'aswRdr.sys' when processing IOCTLs. This can be exploited to corrupt kernel memory via a specially crafted 0x80002024 IOCTL.

Affected

avast! Home and Professional version 4.8.1356 and prior on Windows.

References

http://en.securitylab.ru/nvd/388054.php
http://secunia.com/advisories/37368/
http://www.efblog.net/2009/11/avast-aswrdrsys-kernel-pool-corruption.html
http://www.vupen.com/english/advisories/2009/3266

Updated on 2015-03-25

Severity

Classification

CVE CVE-2009-4049

CVSS	Base Score: 7.2 AV:L/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

DATAC RealWin SCADA Server On_FC_CONNECT_FCS_a_FILE Buffer Overflow Vulnerability
Adobe Audition '.ses' Multiple Buffer Overflow Vulnerabilities (Windows)
Adobe Reader 'mailListIsPdf' Buffer Overflow Vulnerability (Linux)
Adobe Air Buffer Overflow Vulnerability (Mac OS X)
Audacity Buffer Overflow Vulnerability (Win)

avast! 'aswRdr.sys' Buffer Overflow Vulnerability

Take action and discover your vulnerabilities