Vulnerability Scanning Solutions, LLC.
Home
Our Process
Residential
Corporate
What We Scan For
Sample Report
Client List
Terms
Contact Us
What We Scan For
Family: Windows --> Category: infos

avast! Antivirus Server Edition LHA Archive Handling Buffer Overflow Vulnerability Vulnerability Scan


Vulnerability Scan Summary
Checks version of avast Server Edition

Detailed Explanation for this Vulnerability Test

Synopsis :

The remote Windows host contains an application that is affected by a
buffer overflow.

Description :

The remote host is running avast! Antivirus Server Edition.

The installed version of avast! Antivirus Server Edition is reportedly
prone to a heap overflow when processing LHA archives with long
filename and directory-name extended-header fields. A possible hacker may
be able to exploit this issue to execute arbitrary code on the remote
host, likely with LOCAL SYSTEM rights.

See also :

http://www.hustlelabs.com/advisories/04072006_alwil.pdf
http://www.avast.com/eng/avast-4-server-revision-history.html

Solution :

Upgrade to avast! Antivirus Server Edition 4.7.660 or later.

Threat Level:

High / CVSS Base Score : 7.0
(AV:R/AC:L/Au:NR/C:P/I:P/A:P/B:N)

Click HERE for more information and discussions on this network vulnerability scan.

VSS, LLC.

P.O. Box 827051

Pembroke Pines, FL 33082-7051

Vulnerability Scanning Solutions, LLC.