CVE-2014-9632

Published: Feb 6, 2015Modified: May 6, 2026

7.2

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Exploitability: 3.9 / Impact: 10.0

Source: NVD

Description

The TDI driver (avgtdix.sys) in AVG Internet Security before 2013.3495 Hot Fix 18 and 2015.x before 2015.5315 and Protection before 2015.5315 allows local users to write to arbitrary memory locations, and consequently gain privileges, via a crafted 0x830020f8 IOCTL call.

Affected (3)

Products: Avg: Protection, Internet Security

2 products

Internet Security

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Avg Protection	From 2015 to 2015.5314

Configuration B

2 vulnerable

Vulnerable Software	Affected Versions
Avg Internet Security	From 2013 to 2013.3495
Avg Internet Security	From 2015 to 2015.5314

Related CWEs

References (10)

http://packetstormsecurity.com/files/130248/AVG-Internet-Security-2015.0.5315-Privilege-Escalation.html

Source: cve@mitre.org

ExploitThird Party Advisory

http://www.avg.com/eu-en/avg-release-notes

Source: cve@mitre.org

Vendor Advisory

http://www.exploit-db.com/exploits/35993

Source: cve@mitre.org

ExploitThird Party Advisory

http://www.greyhathacker.net/?p=818

Source: cve@mitre.org

Third Party Advisory

http://www.osvdb.org/113824

Source: cve@mitre.org

Broken Link

http://packetstormsecurity.com/files/130248/AVG-Internet-Security-2015.0.5315-Privilege-Escalation.html

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party Advisory

http://www.avg.com/eu-en/avg-release-notes

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.exploit-db.com/exploits/35993

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party Advisory

http://www.greyhathacker.net/?p=818

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

http://www.osvdb.org/113824

Source: af854a3a-2127-422b-91ae-364da2661108

Broken Link

Timeline

No history available yet.