Vigil@nce: Avast, denial of service
October 2009 by Vigil@nce
A local attacker can delete the 400.vps file, so the Avast
antivirus cannot start.
Severity: 1/4
Consequences: denial of service of service
Provenance: user shell
Means of attack: 1 attack
Ability of attacker: technician (2/4)
Confidence: confirmed by the editor (5/5)
Diffusion of the vulnerable configuration: high (3/3)
Creation date: 23/10/2009
IMPACTED PRODUCTS
– Avast antivirus
DESCRIPTION OF THE VULNERABILITY
The version 4 of the Avast antivirus is installed under the
%Program Files%\Alwil Software\Avast4 directory.
However, the \Data\ subdirectory has the permission "Full Control"
for "Everyone". A local attacker can therefore alter its content.
A local attacker can for example delete the 400.vps file, so the
Avast antivirus cannot start.
CHARACTERISTICS
Identifiers: VIGILANCE-VUL-9114
http://vigilance.fr/vulnerability/Avast-denial-of-service-9114