MidnightBSD

Advisories for alwil

CVE-2005-1719 HIGH

Unknown vulnerability in ALWIL avast! antivirus 4 (4.6.6230) and earlier, when running on Windows NT 4.0, does not properly detect certain viruses.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
alwil avast_antivirus 4.0.235
alwil avast_antivirus 4.1.304
alwil avast_antivirus 4.0.168
alwil avast_antivirus 4.6.623
alwil avast_antivirus 4.0.211
alwil avast_antivirus 4.0.202
alwil avast_antivirus 4.1.412
alwil avast_antivirus 4.1.278
alwil avast_antivirus 4.1.289
alwil avast_antivirus 4.1.287
alwil avast_antivirus 4.6.603
alwil avast_antivirus 4.1.389
alwil avast_antivirus 4.1.260
alwil avast_antivirus 4.1.342
alwil avast_antivirus 4.5.518
alwil avast_antivirus 4.1.268
alwil avast_antivirus 4.1.335
alwil avast_antivirus 4.1.501
alwil avast_antivirus 4.0.183
alwil avast_antivirus 4.0.229
alwil avast_antivirus 4.1.357
alwil avast_antivirus 4.1.418
alwil avast_antivirus 4.5.561
alwil avast_antivirus 4.5.549
alwil avast_antivirus 4.1.396
alwil avast_antivirus 4.0.172
alwil avast_antivirus 4.1.319
CVE-2005-1770 HIGH

Buffer overflow in the Aavmker4 device driver in Avast! Antivirus 4.6 and possibly other versions allows local users to cause a denial of service (system crash) and possibly execute arbitrary code via certain signals combined with crafted input.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
alwil avast_antivirus 4.0.235
alwil avast_antivirus 4.1.304
alwil avast_antivirus 4.0.168
alwil avast_antivirus 4.6.623
alwil avast_antivirus 4.0.211
alwil avast_antivirus 4.0.202
alwil avast_antivirus 4.1.412
alwil avast_antivirus 4.1.278
alwil avast_antivirus 4.1.289
alwil avast_antivirus 4.1.287
alwil avast_antivirus 4.6.603
alwil avast_antivirus 4.1.389
alwil avast_antivirus 4.1.260
alwil avast_antivirus 4.1.342
alwil avast_antivirus 4.5.518
alwil avast_antivirus 4.1.268
alwil avast_antivirus 4.1.335
alwil avast_antivirus 4.1.501
alwil avast_antivirus 4.0.183
alwil avast_antivirus 4.0.229
alwil avast_antivirus 4.1.357
alwil avast_antivirus 4.1.418
alwil avast_antivirus 4.5.561
alwil avast_antivirus 4.5.549
alwil avast_antivirus 4.1.396
alwil avast_antivirus 4.0.172
alwil avast_antivirus 4.1.319
CVE-2005-2384 MEDIUM

Directory traversal vulnerability in a third-party compression library (UNACEV2.DLL), as used in avast! Antivirus Home/Professional Edition 4.6.665 and Server Edition 4.6.460, allows remote attackers to write arbitrary files via an ACE archive containing filenames with (1) .. or (2) absolute pathnames.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
alwil avast_antivirus 4.6.665
alwil avast_antivirus 4.6.460
CVE-2005-2385 HIGH

Buffer overflow in a third-party compression library (UNACEV2.DLL), as used in avast! Antivirus Home/Professional Edition 4.6.665 and Server Edition 4.6.460, allows remote attackers to execute arbitrary code via an ACE archive containing a long filename.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
alwil avast_antivirus 4.6.665
alwil avast_antivirus 4.6.460
CVE-2005-3214 MEDIUM

Multiple interpretation error in unspecified versions of Avast Antivirus allows remote attackers to bypass virus detection via a malicious executable in a specially crafted RAR file with malformed central and local headers, which can still be opened by products such as Winrar and PowerZip, even though they are rejected as corrupted by Winzip and BitZipper.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
alwil avast_antivirus *
CVE-2006-1355 HIGH

avast! Antivirus 4.6.763 and earlier sets "BUILTIN\Everyone" permissions to critical system files in the installation folder, which allows local users to gain privileges or disable protection by modifying those files.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
alwil avast_antivirus *
CVE-2006-1892 MEDIUM

avast! 4 Linux Home Edition 1.0.5 allows local users to modify permissions of arbitrary files via a symlink attack on the /tmp/_avast4_ temporary directory.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
alwil avast_antivirus 1.0.5
CVE-2006-2869 HIGH

Unspecified vulnerability in the CHM unpacker in avast! before 4.7.844 has unknown impact and remote attack vectors.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
alwil avast_antivirus 4.6.665
alwil avast_antivirus 4.6.655
alwil avast_antivirus 4.0
alwil avast_antivirus 4.6
alwil avast_antivirus 4.6.652
alwil avast_antivirus 4.6.691
alwil avast_antivirus 4.7.827
alwil avast_antivirus 4.6.603
CVE-2012-1443 MEDIUM

The RAR file parser in ClamAV 0.96.4, Rising Antivirus 22.83.00.03, Quick Heal (aka Cat QuickHeal) 11.00, G Data AntiVirus 21, AVEngine 20101.3.0.103 in Symantec Endpoint Protection 11, Command Antivirus 5.2.11.5, Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0, Emsisoft Anti-Malware 5.1.0.1, PC Tools AntiVirus 7.0.3.5, F-Prot Antivirus 4.6.2.117, VirusBuster 13.6.151.0, Fortinet Antivirus 4.2.254.0, Antiy Labs AVL SDK 2.0.3.7, K7 AntiVirus 9.77.3565, Trend Micro HouseCall 9.120.0.1004, Kaspersky Anti-Virus 7.0.0.125, Jiangmin Antivirus 13.0.900, Antimalware Engine 1.1.6402.0 in Microsoft Security Essentials 2.0, Sophos Anti-Virus 4.61.0, NOD32 Antivirus 5795, Avira AntiVir 7.11.1.163, Norman Antivirus 6.06.12, McAfee Anti-Virus Scanning Engine 5.400.0.1158, Panda Antivirus 10.0.2.7, McAfee Gateway (formerly Webwasher) 2010.1C, Trend Micro AntiVirus 9.120.0.1004, Comodo Antivirus 7424, Bitdefender 7.2, eSafe 7.0.17.0, F-Secure Anti-Virus 9.0.16160.0, nProtect Anti-Virus 2011-01-17.01, AhnLab V3 Internet Security 2011.01.18.00, AVG Anti-Virus 10.0.0.1190, avast! Antivirus 4.8.1351.0 and 5.0.677.0, and VBA32 3.12.14.2 allows user-assisted remote attackers to bypass malware detection via a RAR file with an initial MZ character sequence. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different RAR parser implementations.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
f-secure f-secure_anti-virus 9.0.16160.0
bitdefender bitdefender 7.2
kaspersky kaspersky_anti-virus 7.0.0.125
mcafee gateway 2010.1c
mcafee scan_engine 5.400.0.1158
avg avg_anti-virus 10.0.0.1190
microsoft security_essentials 2.0
alwil avast_antivirus 4.8.1351.0
virusbuster virusbuster 13.6.151.0
eset nod32_antivirus 5795
nprotect nprotect_antivirus 2011-01-17.01
cat quick_heal 11.00
k7computing antivirus 9.77.3565
aladdin esafe 7.0.17.0
clamav clamav 0.96.4
pc_tools pc_tools_antivirus 7.0.3.5
antiy avl_sdk 2.0.3.7
comodo comodo_antivirus 7424
fortinet fortinet_antivirus 4.2.254.0
ikarus ikarus_virus_utilities_t3_command_line_scanner 1.1.97.0
symantec endpoint_protection 11.0
jiangmin jiangmin_antivirus 13.0.900
emsisoft anti-malware 5.1.0.1
gdata-software g_data_antivirus 21
f-prot f-prot_antivirus 4.6.2.117
authentium command_antivirus 5.2.11.5
rising-global rising_antivirus 22.83.00.03
ahnlab v3_internet_security 2011.01.18.00
alwil avast_antivirus 5.0.677.0
trendmicro trend_micro_antivirus 9.120.0.1004
sophos sophos_anti-virus 4.61.0
avira antivir 7.11.1.163
norman norman_antivirus_&_antispyware 6.06.12
trendmicro housecall 9.120.0.1004
pandasecurity panda_antivirus 10.0.2.7
anti-virus vba32 3.12.14.2
CVE-2012-1457 MEDIUM

The TAR file parser in Avira AntiVir 7.11.1.163, Antiy Labs AVL SDK 2.0.3.7, avast! Antivirus 4.8.1351.0 and 5.0.677.0, AVG Anti-Virus 10.0.0.1190, Bitdefender 7.2, Quick Heal (aka Cat QuickHeal) 11.00, ClamAV 0.96.4, Command Antivirus 5.2.11.5, Emsisoft Anti-Malware 5.1.0.1, eSafe 7.0.17.0, F-Prot Antivirus 4.6.2.117, G Data AntiVirus 21, Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0, Jiangmin Antivirus 13.0.900, K7 AntiVirus 9.77.3565, Kaspersky Anti-Virus 7.0.0.125, McAfee Anti-Virus Scanning Engine 5.400.0.1158, McAfee Gateway (formerly Webwasher) 2010.1C, Antimalware Engine 1.1.6402.0 in Microsoft Security Essentials 2.0, NOD32 Antivirus 5795, Norman Antivirus 6.06.12, PC Tools AntiVirus 7.0.3.5, Rising Antivirus 22.83.00.03, AVEngine 20101.3.0.103 in Symantec Endpoint Protection 11, Trend Micro AntiVirus 9.120.0.1004, Trend Micro HouseCall 9.120.0.1004, VBA32 3.12.14.2, and VirusBuster 13.6.151.0 allows remote attackers to bypass malware detection via a TAR archive entry with a length field that exceeds the total TAR file size. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different TAR parser implementations.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
bitdefender bitdefender 7.2
kaspersky kaspersky_anti-virus 7.0.0.125
mcafee gateway 2010.1c
mcafee scan_engine 5.400.0.1158
avg avg_anti-virus 10.0.0.1190
microsoft security_essentials 2.0
alwil avast_antivirus 4.8.1351.0
virusbuster virusbuster 13.6.151.0
eset nod32_antivirus 5795
cat quick_heal 11.00
k7computing antivirus 9.77.3565
aladdin esafe 7.0.17.0
clamav clamav 0.96.4
pc_tools pc_tools_antivirus 7.0.3.5
antiy avl_sdk 2.0.3.7
ikarus ikarus_virus_utilities_t3_command_line_scanner 1.1.97.0
symantec endpoint_protection 11.0
jiangmin jiangmin_antivirus 13.0.900
emsisoft anti-malware 5.1.0.1
gdata-software g_data_antivirus 21
f-prot f-prot_antivirus 4.6.2.117
authentium command_antivirus 5.2.11.5
rising-global rising_antivirus 22.83.00.03
alwil avast_antivirus 5.0.677.0
trendmicro trend_micro_antivirus 9.120.0.1004
avira antivir 7.11.1.163
norman norman_antivirus_&_antispyware 6.06.12
trendmicro housecall 9.120.0.1004
anti-virus vba32 3.12.14.2
CVE-2012-1459 MEDIUM

The TAR file parser in AhnLab V3 Internet Security 2011.01.18.00, Avira AntiVir 7.11.1.163, Antiy Labs AVL SDK 2.0.3.7, avast! Antivirus 4.8.1351.0 and 5.0.677.0, AVG Anti-Virus 10.0.0.1190, Bitdefender 7.2, Quick Heal (aka Cat QuickHeal) 11.00, ClamAV 0.96.4, Command Antivirus 5.2.11.5, Comodo Antivirus 7424, Emsisoft Anti-Malware 5.1.0.1, F-Prot Antivirus 4.6.2.117, F-Secure Anti-Virus 9.0.16160.0, Fortinet Antivirus 4.2.254.0, G Data AntiVirus 21, Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0, Jiangmin Antivirus 13.0.900, K7 AntiVirus 9.77.3565, Kaspersky Anti-Virus 7.0.0.125, McAfee Anti-Virus Scanning Engine 5.400.0.1158, McAfee Gateway (formerly Webwasher) 2010.1C, Antimalware Engine 1.1.6402.0 in Microsoft Security Essentials 2.0, NOD32 Antivirus 5795, Norman Antivirus 6.06.12, nProtect Anti-Virus 2011-01-17.01, Panda Antivirus 10.0.2.7, PC Tools AntiVirus 7.0.3.5, Rising Antivirus 22.83.00.03, Sophos Anti-Virus 4.61.0, AVEngine 20101.3.0.103 in Symantec Endpoint Protection 11, Trend Micro AntiVirus 9.120.0.1004, Trend Micro HouseCall 9.120.0.1004, VBA32 3.12.14.2, and VirusBuster 13.6.151.0 allows remote attackers to bypass malware detection via a TAR archive entry with a length field corresponding to that entire entry, plus part of the header of the next entry. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different TAR parser implementations.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
f-secure f-secure_anti-virus 9.0.16160.0
bitdefender bitdefender 7.2
kaspersky kaspersky_anti-virus 7.0.0.125
mcafee gateway 2010.1c
mcafee scan_engine 5.400.0.1158
avg avg_anti-virus 10.0.0.1190
microsoft security_essentials 2.0
alwil avast_antivirus 4.8.1351.0
virusbuster virusbuster 13.6.151.0
eset nod32_antivirus 5795
nprotect nprotect_antivirus 2011-01-17.01
cat quick_heal 11.00
k7computing antivirus 9.77.3565
clamav clamav 0.96.4
pc_tools pc_tools_antivirus 7.0.3.5
antiy avl_sdk 2.0.3.7
comodo comodo_antivirus 7424
fortinet fortinet_antivirus 4.2.254.0
ikarus ikarus_virus_utilities_t3_command_line_scanner 1.1.97.0
symantec endpoint_protection 11.0
jiangmin jiangmin_antivirus 13.0.900
emsisoft anti-malware 5.1.0.1
gdata-software g_data_antivirus 21
f-prot f-prot_antivirus 4.6.2.117
authentium command_antivirus 5.2.11.5
rising-global rising_antivirus 22.83.00.03
ahnlab v3_internet_security 2011.01.18.00
alwil avast_antivirus 5.0.677.0
trendmicro trend_micro_antivirus 9.120.0.1004
sophos sophos_anti-virus 4.61.0
avira antivir 7.11.1.163
norman norman_antivirus_&_antispyware 6.06.12
trendmicro housecall 9.120.0.1004
pandasecurity panda_antivirus 10.0.2.7
anti-virus vba32 3.12.14.2