Privilege Escalation in Avira AntiVir Products
CVE-2008-6962

Currently unrated

Key Information:

Vendor: Avira
Status: Antivir; Antivir Personal; Antivir Professional; Antivir Security Suite
Vendor: CVE Published:; 13 August 2009

What is CVE-2008-6962?

The vulnerability in Avira AntiVir software products allows local users to craft specific IOCTL requests that can overwrite kernel pointers, leading to the execution of arbitrary code. This poses significant security risks as it facilitates unauthorized privilege escalation, potentially allowing an attacker to gain higher-level access within the affected system.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/46567

vdb-entryx_refsource_XF

http://www.vupen.com/english/VUPEN-Security-Advisory-2008...

x_refsource_MISC

http://www.vupen.com/english/advisories/2008/3130

vdb-entryx_refsource_VUPEN

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 13, 2009
Vulnerability Reserved
Aug 13, 2009