← Back

CVE-2008-6962

nvd nist
Published: Aug 13, 2009Modified: Apr 23, 2026

JSON object

Loading...
7.2
Vector
AV:L/AC:L/Au:N/C:C/I:C/A:C
Exploitability: 3.9 / Impact: 10.0
Source: NVD

Description

Avira AntiVir Premium, Premium Security Suite, AntiVir Professional, and AntiVir Personal - FREE allows local users to execute arbitrary code via a crafted IOCTL request that overwrites a kernel pointer.

Affected (6)

Avira
4 products
Antivir
Antivir Personal
Antivir Professional
Antivir Security Suite
Configuration A
6 vulnerable
Vulnerable SoftwareAffected Versions
Avira
Antivir
All versions
Antivir
Version 6.35.00.00
Avira
Antivir Personal
All versions
Antivir Personal
All versions
Antivir Professional
All versions
Antivir Security Suite
All versions

Related CWEs

CWE-20
Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References (8)

Source: cve@mitre.org
Source: cve@mitre.org
Vendor Advisory
Source: cve@mitre.org
Vendor Advisory
Source: cve@mitre.org
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.