CVE-2006-4626

  1. Reconshell
  2. Vulnerabilities (CVE)
  3. CVE-2006-4626
Heap-based buffer overflow in alwil avast! Anti-virus Engine before 4.7.869 allows remote attackers to execute arbitrary code via a crafted LHA file that contains extended headers with file and directory names whose concatenation triggers the overflow.

7.5 /10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 10.0 / Impact : 6.4

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References
Link Resource
http://www.hustlelabs.com/advisories/04072006_alwil.pdf Exploit Patch Vendor Advisory
http://www.securityfocus.com/bid/19903
http://secunia.com/advisories/21794
http://www.vupen.com/english/advisories/2006/3515
Advertisement

NeevaHost hosting service
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:alwil:avast_antivirus:4.0.229:*:*:*:*:*:*:*
cpe:2.3:a:alwil:avast_antivirus:4.0.235:*:*:*:*:*:*:*
cpe:2.3:a:alwil:avast_antivirus:4.1.319:*:*:*:*:*:*:*
cpe:2.3:a:alwil:avast_antivirus:4.1.335:*:*:*:*:*:*:*
cpe:2.3:a:alwil:avast_antivirus:4.1.342:*:*:*:*:*:*:*
cpe:2.3:a:alwil:avast_antivirus:4.5.518:*:*:*:*:*:*:*
cpe:2.3:a:alwil:avast_antivirus:4.5.549:*:*:*:*:*:*:*
cpe:2.3:a:alwil:avast_antivirus:4.0.168:*:*:*:*:*:*:*
cpe:2.3:a:alwil:avast_antivirus:4.1.260:*:*:*:*:*:*:*
cpe:2.3:a:alwil:avast_antivirus:4.1.268:*:*:*:*:*:*:*
cpe:2.3:a:alwil:avast_antivirus:4.1.357:*:*:*:*:*:*:*
cpe:2.3:a:alwil:avast_antivirus:4.0.202:*:*:*:*:*:*:*
cpe:2.3:a:alwil:avast_antivirus:4.0.211:*:*:*:*:*:*:*
cpe:2.3:a:alwil:avast_antivirus:4.1.304:*:*:*:*:*:*:*
cpe:2.3:a:alwil:avast_antivirus:4.1.396:*:*:*:*:*:*:*
cpe:2.3:a:alwil:avast_antivirus:4.6.603:*:*:*:*:*:*:*
cpe:2.3:a:alwil:avast_antivirus:4.1.412:*:*:*:*:*:*:*
cpe:2.3:a:alwil:avast_antivirus:4.0.183:*:*:*:*:*:*:*
cpe:2.3:a:alwil:avast_antivirus:4.1.287:*:*:*:*:*:*:*
cpe:2.3:a:alwil:avast_antivirus:4.1.418:*:*:*:*:*:*:*
cpe:2.3:a:alwil:avast_antivirus:4.1.289:*:*:*:*:*:*:*
cpe:2.3:a:alwil:avast_antivirus:4.1.389:*:*:*:*:*:*:*
cpe:2.3:a:alwil:avast_antivirus:4.1.501:*:*:*:*:*:*:*
cpe:2.3:a:alwil:avast_antivirus:*:*:*:*:*:*:*:*
cpe:2.3:a:alwil:avast_antivirus:4.6.623:*:*:*:*:*:*:*
cpe:2.3:a:alwil:avast_antivirus:4.1.278:*:*:*:*:*:*:*
cpe:2.3:a:alwil:avast_antivirus:4.0.172:*:*:*:*:*:*:*
cpe:2.3:a:alwil:avast_antivirus:4.5.561:*:*:*:*:*:*:*
cpe:2.3:a:alwil:avast_antivirus:*:*:server:*:*:*:*:*
Information

Published : 2006-09-07 14:04

Updated : 2011-03-07 18:41

NVD link : CVE-2006-4626

Mitre link : CVE-2006-4626

JSON object : View

CWE
NVD-CWE-Other
Advertisement

dedicated server usa
Products Affected

alwil

  • avast_antivirus