← Back

CVE-2008-1625

nvd nist
Published: Apr 2, 2008Modified: Apr 23, 2026

JSON object

Loading...
6.8
Vector
AV:L/AC:L/Au:S/C:C/I:C/A:C
Exploitability: 3.1 / Impact: 10.0
Source: NVD

Description

aavmker4.sys in avast! Home and Professional 4.7 for Windows does not properly validate input to IOCTL 0xb2d60030, which allows local users to gain privileges via certain IOCTL requests.

Affected (9)

Avast
2 products
Avast Antivirus Home
Avast Antivirus Professional
Configuration A
5 vulnerable
Vulnerable SoftwareAffected Versions
Avast
Avast Antivirus Home
Version 4.7.1043
Avast Antivirus Home
Version 4.7.1098
Avast Antivirus Home
Version 4.7.827
Avast Antivirus Home
Version 4.7.844
Avast Antivirus Home
Version 4.7.869
Configuration B
4 vulnerable
Vulnerable SoftwareAffected Versions
Avast
Avast Antivirus Professional
Version 4.7.1043
Avast Antivirus Professional
Version 4.7.1098
Avast Antivirus Professional
Version 4.7.827
Avast Antivirus Professional
Version 4.7.844

Related CWEs

CWE-264
CWE-264

References (16)

Source: cve@mitre.org
Vendor Advisory
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.