published date: May 31, 2005

CVE-2005-1770 : Denial of Service Vulnerability

Description

Buffer overflow in the Aavmker4 device driver in Avast! Antivirus 4.6 and possibly other versions allows local users to cause a denial of service (system crash) and possibly execute arbitrary code via certain signals combined with crafted input.

Product(s):

Alwil Avast Antivirus 4.0.168
Alwil Avast Antivirus 4.0.172
Alwil Avast Antivirus 4.0.183
Alwil Avast Antivirus 4.0.202
Alwil Avast Antivirus 4.0.211
Alwil Avast Antivirus 4.0.229
Alwil Avast Antivirus 4.0.235
Alwil Avast Antivirus 4.1.260
Alwil Avast Antivirus 4.1.268
Alwil Avast Antivirus 4.1.278
Alwil Avast Antivirus 4.1.287
Alwil Avast Antivirus 4.1.289
Alwil Avast Antivirus 4.1.304
Alwil Avast Antivirus 4.1.319
Alwil Avast Antivirus 4.1.335
Alwil Avast Antivirus 4.1.342
Alwil Avast Antivirus 4.1.357
Alwil Avast Antivirus 4.1.389
Alwil Avast Antivirus 4.1.396
Alwil Avast Antivirus 4.1.412
Alwil Avast Antivirus 4.1.418
Alwil Avast Antivirus 4.1.501
Alwil Avast Antivirus 4.5.518
Alwil Avast Antivirus 4.5.549
Alwil Avast Antivirus 4.5.561
Alwil Avast Antivirus 4.6.603
Alwil Avast Antivirus 4.6.623

CVSS:7.2 [Critical]
EPSS:0.06%
Exploitability:3.9
In KEV:No

Question to Ask Vendors:

Can you confirm whether your systems are affected by CVE-2005-1770, and if so, what steps are you currently taking to mitigate this vulnerability?
What is your estimated timeline for fully resolving CVE-2005-1770 in your products or services, and how will you communicate updates on this issue to us as your customer?

CVE-2005-1770 : Denial of Service Vulnerability

Description

Product(s):

Question to Ask Vendors:

Recommended Actions:

References:

READY TO GET RESULTS YOU CAN TRUST?