|
Family: Windows --> Category: infos
avast! Antivirus Server Edition LHA Archive Handling Buffer Overflow Vulnerability Vulnerability Scan
Vulnerability Scan Summary Checks version of avast Server Edition
Detailed Explanation for this Vulnerability Test
Synopsis :
The remote Windows host contains an application that is affected by a
buffer overflow.
Description :
The remote host is running avast! Antivirus Server Edition.
The installed version of avast! Antivirus Server Edition is reportedly
prone to a heap overflow when processing LHA archives with long
filename and directory-name extended-header fields. A possible hacker may
be able to exploit this issue to execute arbitrary code on the remote
host, likely with LOCAL SYSTEM rights.
See also :
http://www.hustlelabs.com/advisories/04072006_alwil.pdf
http://www.avast.com/eng/avast-4-server-revision-history.html
Solution :
Upgrade to avast! Antivirus Server Edition 4.7.660 or later.
Threat Level:
High / CVSS Base Score : 7.0
(AV:R/AC:L/Au:NR/C:P/I:P/A:P/B:N)
Click HERE for more information and discussions on this network vulnerability scan.
|