Avast! 'aswRdr.sys' Buffer Overflow Vulnerability Network Vulnerability

Summary

This host is installed with avast! AntiVirus and is prone to Buffer Overflow vulnerability.

Impact

Successful exploitation could allow remote attackers to cause a Denial of Service or potentially gain escalated privileges. Impact Level: System/Application

Solution

Upgrade to avast! Home and Professional version 4.8.1367 or later For updates refer to http://www.avast.com/eng/download.html

Insight

The vulnerability is due to an error in 'aswRdr.sys' when processing IOCTLs. This can be exploited to corrupt kernel memory via a specially crafted 0x80002024 IOCTL.

Affected

avast! Home and Professional version 4.8.1356 and prior on Windows.

References

http://en.securitylab.ru/nvd/388054.php
http://secunia.com/advisories/37368/
http://www.efblog.net/2009/11/avast-aswrdrsys-kernel-pool-corruption.html
http://www.vupen.com/english/advisories/2009/3266

Updated on 2015-03-25

Severity

Classification

CVE CVE-2009-4049

CVSS	Base Score: 7.2 AV:L/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

BigAnt IM Server HTTP GET Request Buffer Overflow Vulnerability
Adobe PageMaker Font Structure Multiple BOF Vulnerabilities
Adobe Reader Integer Overflow Vulnerability - Jan 12 (Linux)
Adobe Reader Multimeda Doc.media.newPlayer Code Execution Vulnerability (Linux)
avast! Multiple Vulnerabilities - Oct09 (Win)

avast! 'aswRdr.sys' Buffer Overflow Vulnerability

Take action and discover your vulnerabilities