HNS MAIN FEED
Saturday, 02:23 EST
- Zero-day vulnerabilities in Firefox extensions discovered
- Three charged with Comcast.net hijacking
- Cloud computing security benefits, risks and recommendations
- Poisoned Google search results
- World’s first wireless USB external hard drive
- A look at Securitybyte & OWASP AppSec Asia Conference 2009
- Biggest threats to federal systems and critical infrastructure
- Are 64-bit Windows inherently safer?
- NSA on cyber attacks and Microsoft collaboration
- New books: ModSecurity, Snow Leopard, social Web applications
- Vulnerability in IBM SolidDB memory caching software
- Two arrested for Zbot Trojan
Avast! Antivirus "aavmKer4.sys" Driver Local Privilege Escalation
10 November 2009
Avast! Antivirus is an application that provides virus protection. The application is exposed to a local privilege escalation issue because the "aavmKer4.sys" driver fails to sufficiently sanitize user-supplied input passed to IOCTL 0xb2d6000c and 0xb2d60034. Avast! Antivirus versions earlier than 4.8.1356 are affected by this issue.
Ref: http://www.ntinternals.org/ntiadv0904/ntiadv0904.html
09.45.2 - CVE: CVE-2009-3523
Platform: Third Party Windows Apps
Ref: http://www.ntinternals.org/ntiadv0904/ntiadv0904.html
09.45.2 - CVE: CVE-2009-3523
Platform: Third Party Windows Apps