Lucene search
MitreCVE-2007-3777HistoryJul 15, 2007 - 10:30 p.m.
CVE-2007-3777
2007-07-1522:30:00
mitre
web.nvd.nist.gov
22
avg anti-virus
cve-2007-3777
privilege escalation
avg7core.sys
nvd
security vulnerability
CVSS2
7.2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
AI Score
6.7
Confidence
High
EPSS
0
Percentile
5.1%
avg7core.sys 7.5.0.444 in Grisoft AVG Anti-Virus 7.5.448 and Free Edition 7.5.446, provides an internal function that copies data to an arbitrary address, which allows local users to gain privileges via arbitrary address arguments to a function provided by the 0x5348E004 IOCTL for the generic DeviceIoControl handler.
Affected configurations
Node
grisoftavg_antivirusMatch7.5.446free
ORgrisoftavg_antivirusMatch7.5.448
| Vendor | Product | Version | CPE |
|---|---|---|---|
| grisoft | avg_antivirus | 7.5.446 | cpe:2.3:a:grisoft:avg_antivirus:7.5.446:*:free:*:*:*:*:* |
| grisoft | avg_antivirus | 7.5.448 | cpe:2.3:a:grisoft:avg_antivirus:7.5.448:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2007-3777
2007-07-15 22:00:00
nessus
nessus
AVG Anti-virus avg7core.sys 0x5348E004 IOCTL Local Privilege Escalation
2007-07-12 00:00:00
nvd
nvd
CVE-2007-3777
2007-07-15 22:30:00
prion
prion
Code injection
2007-07-15 22:30:00
CVSS2
7.2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
AI Score
6.7
Confidence
High
EPSS
0
Percentile
5.1%
Related for CVE-2007-3777