cpe:2.3:a:alwil:avast_antivirus:4.6.489:*:server:*:*:*:*:*
avast! Server Edition before 4.7.726 does not demand a password in a certain intended context, even when a password has been set, which allows local users to bypass authentication requirements.
Max CVSS
4.4
EPSS Score
0.04%
Published
2007-02-07
Updated
2017-07-29
Heap-based buffer overflow in alwil avast! Anti-virus Engine before 4.7.869 allows remote attackers to execute arbitrary code via a crafted LHA file that contains extended headers with file and directory names whose concatenation triggers the overflow.
Max CVSS
7.5
EPSS Score
4.43%
Published
2006-09-07
Updated
2011-03-08
avast! Antivirus 4.6.763 and earlier sets "BUILTIN\Everyone" permissions to critical system files in the installation folder, which allows local users to gain privileges or disable protection by modifying those files.
Max CVSS
7.2
EPSS Score
0.06%
Published
2006-03-22
Updated
2017-07-20
3 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!