Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
avast! antivirus vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2005-2384
Directory traversal vulnerability in a third-party compression library (UNACEV2.DLL), as used in avast! Antivirus Home/Professional Edition 4.6.665 and Server Edition 4.6.460, allows remote malicious users to write arbitrary files via an ACE archive containing filenames with (1) ...
Alwil Avast Antivirus 4.6.665
Alwil Avast Antivirus 4.6.460
668
VMScore
CVE-2005-2385
Buffer overflow in a third-party compression library (UNACEV2.DLL), as used in avast! Antivirus Home/Professional Edition 4.6.665 and Server Edition 4.6.460, allows remote malicious users to execute arbitrary code via an ACE archive containing a long filename.
Alwil Avast Antivirus 4.6.665
Alwil Avast Antivirus 4.6.460
828
VMScore
CVE-2007-2845
Heap-based buffer overflow in the CAB unpacker in avast! Anti-Virus Managed Client prior to 4.7.700 allows user-assisted remote malicious users to execute arbitrary code via a crafted CAB archive, resulting from an "integer cast around".
Avast Avast Antivirus
694
VMScore
CVE-2007-1672
avast! antivirus prior to 4.7.981 allows remote malicious users to cause a denial of service (infinite loop) via a ZOO archive with a direntry structure that points to a previous file.
Avast Avast Antivirus
570
VMScore
CVE-2015-5662
Directory traversal vulnerability in Avast prior to 150918-0 allows remote malicious users to delete or write to arbitrary files via a crafted entry in a ZIP archive.
Avast Avast Antivirus
935
VMScore
CVE-2010-3126
Untrusted search path vulnerability in avast! Free Antivirus version 5.0.594 and previous versions allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse mfc90loc.dll that is located in the same folder as ...
Avast Avast Antivirus Free
1 EDB exploit
320
VMScore
CVE-2019-11230
In Avast Antivirus prior to 19.4, a local administrator can trick the product into renaming arbitrary files by replacing the Logs\Update.log file with a symlink. The next time the product attempts to write to the log file, the target of the symlink is renamed. This defect can be ...
Avast Antivirus
668
VMScore
CVE-2017-8307
In Avast Antivirus before v17, using the LPC interface API exposed by the AvastSVC.exe Windows service, it is possible to launch predefined binaries, or replace or delete arbitrary files. This vulnerability is exploitable by any unprivileged user when Avast Self-Defense is disabl...
Avast Antivirus
445
VMScore
CVE-2017-8308
In Avast Antivirus before v17, an unprivileged user (and thus malware or a virus) can mark an arbitrary process as Trusted from the perspective of the Avast product. This bypasses the Self-Defense feature of the product, opening a door to subsequent attack on many of its componen...
Avast Antivirus
570
VMScore
CVE-2020-10861
An issue exists in Avast Antivirus prior to 20. The aswTask RPC endpoint for the TaskEx library in the Avast Service (AvastSvc.exe) allows malicious users to achieve Arbitrary File Deletion from Avast Program Path via RPC, when Self Defense is Enabled.
Avast Antivirus
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32976
CVE-2024-33557
CVE-2024-36801
CVE-2024-35654
authentication bypass
CVE-2024-24919
CSRF
code execution
CVE-2024-27348
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »