Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
avast antivirus vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2005-2384
Directory traversal vulnerability in a third-party compression library (UNACEV2.DLL), as used in avast! Antivirus Home/Professional Edition 4.6.665 and Server Edition 4.6.460, allows remote malicious users to write arbitrary files via an ACE archive containing filenames with (1) ...
Alwil Avast Antivirus 4.6.665
Alwil Avast Antivirus 4.6.460
7.5
CVSSv2
CVE-2005-2385
Buffer overflow in a third-party compression library (UNACEV2.DLL), as used in avast! Antivirus Home/Professional Edition 4.6.665 and Server Edition 4.6.460, allows remote malicious users to execute arbitrary code via an ACE archive containing a long filename.
Alwil Avast Antivirus 4.6.665
Alwil Avast Antivirus 4.6.460
7.8
CVSSv2
CVE-2007-1672
avast! antivirus prior to 4.7.981 allows remote malicious users to cause a denial of service (infinite loop) via a ZOO archive with a direntry structure that points to a previous file.
Avast Avast Antivirus
6.4
CVSSv2
CVE-2015-5662
Directory traversal vulnerability in Avast prior to 150918-0 allows remote malicious users to delete or write to arbitrary files via a crafted entry in a ZIP archive.
Avast Avast Antivirus
9.3
CVSSv2
CVE-2007-2845
Heap-based buffer overflow in the CAB unpacker in avast! Anti-Virus Managed Client prior to 4.7.700 allows user-assisted remote malicious users to execute arbitrary code via a crafted CAB archive, resulting from an "integer cast around".
Avast Avast Antivirus
9.3
CVSSv2
CVE-2010-3126
Untrusted search path vulnerability in avast! Free Antivirus version 5.0.594 and previous versions allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse mfc90loc.dll that is located in the same folder as ...
Avast Avast Antivirus Free
1 EDB exploit
7.2
CVSSv2
CVE-2021-45335
Sandbox component in Avast Antivirus before 20.4 has an insecure permission which could be abused by local user to control the outcome of scans, and therefore evade detection or delete arbitrary system files.
Avast Antivirus
7.2
CVSSv2
CVE-2021-45336
Privilege escalation vulnerability in the Sandbox component of Avast Antivirus before 20.4 allows a local sandboxed code to gain elevated privileges by using system IPC interfaces which could lead to exit the sandbox and acquire SYSTEM privileges.
Avast Antivirus
7.2
CVSSv2
CVE-2021-45339
Privilege escalation vulnerability in Avast Antivirus before 20.4 allows a local user to gain elevated privileges by "hollowing" trusted process which could lead to the bypassing of Avast self-defense.
Avast Antivirus
5
CVSSv2
CVE-2020-10865
An issue exists in Avast Antivirus prior to 20. The aswTask RPC endpoint for the TaskEx library in the Avast Service (AvastSvc.exe) allows malicious users to make arbitrary changes to the Components section of the Stats.ini file via RPC from a Low Integrity process.
Avast Antivirus
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »