Vulnerability Details : CVE-2015-8620
Heap-based buffer overflow in the Avast virtualization driver (aswSnx.sys) in Avast Internet Security, Pro Antivirus, Premier, and Free Antivirus before 11.1.2253 allows local users to gain privileges via a Unicode file path in an IOCTL request.
Vulnerability category: Overflow
Products affected by CVE-2015-8620
- cpe:2.3:a:avast:avast_free_antivirus:*:*:*:*:*:*:*:*
- cpe:2.3:a:avast:avast_premier:*:*:*:*:*:*:*:*
- cpe:2.3:a:avast:avast_pro_antivirus:*:*:*:*:*:*:*:*
- cpe:2.3:a:avast:avast_internet_security:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2015-8620
0.08%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 37 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2015-8620
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
7.2
|
HIGH | AV:L/AC:L/Au:N/C:C/I:C/A:C |
3.9
|
10.0
|
NIST | |
7.8
|
HIGH | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
1.8
|
5.9
|
NIST |
CWE ids for CVE-2015-8620
-
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.Assigned by: nvd@nist.gov (Primary)
References for CVE-2015-8620
-
https://www.nettitude.co.uk/exploiting-a-kernel-paged-pool-buffer-overflow-in-avast-virtualization-driver/
Exploiting a Kernel Paged Pool Buffer Overflow in Avast Virtualization DriverExploit
-
http://www.securitytracker.com/id/1035093
avast! Products Heap Overflow in 'aswSnx.sys' Driver Lets Local Users Obtain System Privileges - SecurityTrackerThird Party Advisory;VDB Entry
-
http://seclists.org/fulldisclosure/2016/Feb/94
Full Disclosure: Avast Virtualization Driver - Elevation Of PrivilegesExploit;Mailing List;Third Party Advisory
-
http://packetstormsecurity.com/files/135859/Avast-11.1.2245-Heap-Overflow.html
Avast 11.1.2245 Heap Overflow ≈ Packet StormExploit;Third Party Advisory;VDB Entry
Jump to