Grisoft » Avg Antivirus : Security Vulnerabilities, CVEs, CVSS score >= 6
avg7core.sys 7.5.0.444 in Grisoft AVG Anti-Virus 7.5.448 and Free Edition 7.5.446, provides an internal function that copies data to an arbitrary address, which allows local users to gain privileges via arbitrary address arguments to a function provided by the 0x5348E004 IOCTL for the generic DeviceIoControl handler.
Max CVSS
7.2
EPSS Score
0.04%
Published
2007-07-15
Updated
2018-10-15
Unspecified vulnerability in Grisoft AVG Anti-Virus before 7.1.407 has unknown impact and remote attack vectors related to "Integer Issues" and parsing of .EXE files.
Max CVSS
10.0
EPSS Score
0.49%
Published
2006-11-16
Updated
2016-11-18
Grisoft AVG Anti-Virus before 7.1.407 allows remote attackers to cause a denial of service (crash) via a crafted DOC file that triggers a divide-by-zero error. NOTE: some of these details are obtained from third party information.
Max CVSS
7.8
EPSS Score
1.07%
Published
2006-11-16
Updated
2017-07-20
Grisoft AVG Anti-Virus before 7.1.407 has unknown impact and remote attack vectors involving an uninitialized variable and a crafted CAB file.
Max CVSS
10.0
EPSS Score
0.63%
Published
2006-11-16
Updated
2017-07-20
Multiple integer overflows in Grisoft AVG Anti-Virus before 7.1.407 allow remote attackers to execute arbitrary code via crafted (1) CAB or (2) RAR archives that trigger a heap-based buffer overflow. NOTE: some of these details are obtained from third party information.
Max CVSS
7.5
EPSS Score
1.57%
Published
2006-11-16
Updated
2016-11-18
5 vulnerabilities found