Vulnerability CVE-2008-1625 - CERT Civis.Net

Vulnerability Name:

CVE-2008-1625 (CCN-41527)

Assigned:

2008-03-30

Published:

2008-03-30

Updated:

2018-10-11

Summary:

aavmker4.sys in avast! Home and Professional 4.7 for Windows does not properly validate input to IOCTL 0xb2d60030, which allows local users to gain privileges via certain IOCTL requests.

CVSS v3 Severity:

9.3 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Changed
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

CVSS v2 Severity:

6.8 Medium (CVSS v2 Vector: AV:L/AC:L/Au:S/C:C/I:C/A:C)
5.6 Medium (Temporal CVSS v2 Vector: AV:L/AC:L/Au:S/C:C/I:C/A:C/E:F/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Authentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

7.2 High (CCN CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C)
5.9 Medium (CCN Temporal CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C/E:F/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

Vulnerability Type:

Vulnerability Consequences:

Gain Privileges

References:

Source: MITRE
Type: CNA
CVE-2008-1625

Source: CCN
Type: SA29605
avast! Home/Professional aavmker4.sys Privilege Escalation

Source: SECUNIA
Type: Vendor Advisory
29605

Source: CCN
Type: SECTRACK ID: 1019732
avast! 'aavmker4.sys' Kernel Driver Lets Local Users Gain Elevated Privileges

Source: CCN
Type: avast! Changelog, Version 4.8.1169, March 29, 2008
avast! 4 Home/Professional Revision History

Source: CONFIRM
Type: UNKNOWN
http://www.avast.com/eng/avast-4-home_pro-revision-history.html

Source: CCN
Type: avast! Web site
Download Programs

Source: CCN
Type: OSVDB ID: 43922
avast! Home/Professional aavmker4.sys IOCTL Handling Local Privilege Escalation

Source: CCN
Type: OSVDB ID: 58493
avast! Home / Professional aavmKer4.sys IOCTL Handling Memory Corruption Local Privilege Escalation

Source: BUGTRAQ
Type: UNKNOWN
20080330 [TKADV2008-002] avast! 4.7 aavmker4.sys Kernel Memory Corruption

Source: BID
Type: UNKNOWN
28502

Source: CCN
Type: BID-28502
Avast! Home/Professional Local Privilege Escalation Vulnerability

Source: SECTRACK
Type: UNKNOWN
1019732

Source: CCN
Type: Trapkit Security Advisory TKADV2008-002
avast! 4.7 aavmker4.sys Kernel Memory Corruption

Source: MISC
Type: UNKNOWN
http://www.trapkit.de/advisories/TKADV2008-002.txt

Source: VUPEN
Type: UNKNOWN
ADV-2008-1034

Source: XF
Type: UNKNOWN
avast-aavmker4-privilege-escalation(41527)

Source: XF
Type: UNKNOWN
avast-aavmker4-privilege-escalation(41527)

Source: EXPLOIT-DB
Type: EXPLOIT
Offensive Security Exploit Database [04-27-2010]

Vulnerable Configuration:

Configuration 1:

cpe:/a:avast:avast_antivirus_home:4.7.827:*:windows:*:*:*:*:*

OR cpe:/a:avast:avast_antivirus_home:4.7.844:*:windows:*:*:*:*:*

OR cpe:/a:avast:avast_antivirus_home:4.7.869:*:windows:*:*:*:*:*

OR cpe:/a:avast:avast_antivirus_home:4.7.1043:*:windows:*:*:*:*:*

OR cpe:/a:avast:avast_antivirus_home:4.7.1098:*:windows:*:*:*:*:*

Configuration 2:

cpe:/a:avast:avast_antivirus_professional:4.7.827:*:windows:*:*:*:*:*

OR cpe:/a:avast:avast_antivirus_professional:4.7.844:*:windows:*:*:*:*:*

OR cpe:/a:avast:avast_antivirus_professional:4.7.1043:*:windows:*:*:*:*:*

OR cpe:/a:avast:avast_antivirus_professional:4.7.1098:*:windows:*:*:*:*:*

Denotes that component is vulnerable