Vulnerabilities > CVE-2016-4025 - 7PK - Security Features vulnerability in Avast products

CVSS 5.5 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

NONE

Integrity impact

HIGH

Availability impact

NONE

local

low complexity

avast

CWE-254

NVD

Published: 2016-11-03

Updated: 2016-11-04

Summary

Avast Internet Security v11.x.x, Pro Antivirus v11.x.x, Premier v11.x.x, Free Antivirus v11.x.x, Business Security v11.x.x, Endpoint Protection v8.x.x, Endpoint Protection Plus v8.x.x, Endpoint Protection Suite v8.x.x, Endpoint Protection Suite Plus v8.x.x, File Server Security v8.x.x, and Email Server Security v8.x.x allow attackers to bypass the DeepScreen feature via a DeviceIoControl call.

Vulnerable Configurations

Part	Description	Count
Application	Avast Avast Free Antivirus 11.1.2245 Avast Free Antivirus 11.1.2260 Avast Free Antivirus 11.1.2262 Avast Free Antivirus 11.1.2261 Avast Free Antivirus 11.1.2241 Avast Free Antivirus 11.1.2253 Avast PRO Antivirus 11.1.2260 Avast PRO Antivirus 11.1.2253 Avast PRO Antivirus 11.1.2241 Avast PRO Antivirus 11.1.2261 Avast PRO Antivirus 11.1.2245 Avast PRO Antivirus 11.1.2262 Avast Premier 11.1.2253 Avast Premier 11.1.2262 Avast Premier 11.1.2260 Avast Premier 11.1.2245 Avast Premier 11.1.2261 Avast Premier 11.1.2241 Avast Internet Security 11.1.2261 Avast Internet Security 11.1.2241 Avast Internet Security 11.1.2262 Avast Internet Security 11.1.2245 Avast Internet Security 11.1.2253 Avast Internet Security 11.1.2260 Avast Business Security 11.1.2262 Avast Business Security 11.1.2245 Avast Business Security 11.1.2241 Avast Business Security 11.1.2261 Avast Business Security 11.1.2253 Avast Business Security 11.1.2260 Avast File Server Security 8.0.1606 Avast File Server Security 8.0.1609 Avast Endpoint Protection Suite 8.0.1606 Avast Endpoint Protection Suite 8.0.1609 Avast Endpoint Protection 8.0.1606 Avast Endpoint Protection 8.0.1609 Avast Endpoint Protection Suite Plus 8.0.1606 Avast Endpoint Protection Suite Plus 8.0.1609 Avast Email Server Security 8.0.1606 Avast Email Server Security 8.0.1609 Avast Endpoint Protection Plus 8.0.1606 Avast Endpoint Protection Plus 8.0.1609	42

Common Weakness Enumeration (CWE)

CWE-254 - 7PK - Security Features

References

https://labs.nettitude.com/blog/escaping-avast-sandbox-using-single-ioctl-cve-2016-4025/