Aavmker4.sys in avast! 4.8 through 4.8.1368.0 and 5.0 before 5.0.418.0 running on Windows 2000 and XP does not properly validate input to IOCTL 0xb2d60030, which allows local users to cause a denial of service (system crash) or execute arbitrary code to gain privileges via IOCTL requests using crafted kernel addresses that trigger memory corruption.
Advisories
Source ID Title
EUVD EUVD EUVD-2010-0732 Aavmker4.sys in avast! 4.8 through 4.8.1368.0 and 5.0 before 5.0.418.0 running on Windows 2000 and XP does not properly validate input to IOCTL 0xb2d60030, which allows local users to cause a denial of service (system crash) or execute arbitrary code to gain privileges via IOCTL requests using crafted kernel addresses that trigger memory corruption.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2024-08-07T00:59:38.335Z

Reserved: 2010-02-25T00:00:00

Link: CVE-2010-0705

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Deferred

Published: 2010-02-25T18:30:00.377

Modified: 2025-04-11T00:51:21.963

Link: CVE-2010-0705

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.