HIGH🇬🇧 English

CVE-2007-3777

CVSS 7.2v2.0pub. 2007-07-15upd. 2026-04-23

avg7core.sys 7.5.0.444 in Grisoft AVG Anti-Virus 7.5.448 and Free Edition 7.5.446, provides an internal function that copies data to an arbitrary address, which allows local users to gain privileges via arbitrary address arguments to a function provided by the 0x5348E004 IOCTL for the generic DeviceIoControl handler.

oryginał EN
CVSS Vector
AV:L/AC:L/Au:N/C:C/I:C/A:C
  • Grisoft Avg Antivirus

    APP
    Grisoft
    7.5.4467.5.448
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Referencje

Powiązane podatności

CVE-2006-5938HIGH10.0ten sam produkt

Grisoft AVG Anti-Virus before 7.1.407 has unknown impact and remote attack vectors involving an uninitialized ...

CVE-2006-5940HIGH10.0ten sam produkt

Unspecified vulnerability in Grisoft AVG Anti-Virus before 7.1.407 has unknown impact and remote attack vector...

CVE-2006-5939HIGH7.8ten sam produkt

Grisoft AVG Anti-Virus before 7.1.407 allows remote attackers to cause a denial of service (crash) via a craft...

CVE-2006-5937HIGH7.5ten sam produkt

Multiple integer overflows in Grisoft AVG Anti-Virus before 7.1.407 allow remote attackers to execute arbitrar...

CVE-2008-3373MEDIUM5.0ten sam produkt

The files parsing engine in Grisoft AVG Anti-Virus before 8.0.156 allows remote attackers to cause a denial of...