CVE-2016-4025

Severity

21%

Complexity

39%

Confidentiality

48%

Avast Internet Security v11.x.x, Pro Antivirus v11.x.x, Premier v11.x.x, Free Antivirus v11.x.x, Business Security v11.x.x, Endpoint Protection v8.x.x, Endpoint Protection Plus v8.x.x, Endpoint Protection Suite v8.x.x, Endpoint Protection Suite Plus v8.x.x, File Server Security v8.x.x, and Email Server Security v8.x.x allow attackers to bypass the DeepScreen feature via a DeviceIoControl call.

Avast Internet Security v11.x.x, Pro Antivirus v11.x.x, Premier v11.x.x, Free Antivirus v11.x.x, Business Security v11.x.x, Endpoint Protection v8.x.x, Endpoint Protection Plus v8.x.x, Endpoint Protection Suite v8.x.x, Endpoint Protection Suite Plus v8.x.x, File Server Security v8.x.x, and Email Server Security v8.x.x allow attackers to bypass the DeepScreen feature via a DeviceIoControl call.

CVSS 3.0 Base Score 5.5. CVSS Attack Vector: local. CVSS Attack Complexity: low. CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N).

CVSS 2.0 Base Score 2.1. CVSS Attack Vector: local. CVSS Attack Complexity: low. CVSS Vector: (AV:L/AC:L/Au:N/C:N/I:P/A:N).

Overview

Type

Avast

First reported 8 years ago

2016-11-03 10:59:00

Last updated 8 years ago

2016-11-04 19:03:00

Affected Software

Avast Business Security 11.1.2241

11.1.2241

Avast Business Security 11.1.2245

11.1.2245

Avast Business Security 11.1.2253

11.1.2253

Avast Business Security 11.1.2260

11.1.2260

Avast Business Security 11.1.2261

11.1.2261

Avast Business Security 11.1.2262

11.1.2262

Avast Free Antivirus 11.1.2241

11.1.2241

Avast Free Antivirus 11.1.2245

11.1.2245

Avast Free Antivirus 11.1.2253

11.1.2253

Avast Free Antivirus 11.1.2260

11.1.2260

Avast Free Antivirus 11.1.2261

11.1.2261

Avast Free Antivirus 11.1.2262

11.1.2262

Avast Internet Security 11.1.2241

11.1.2241

Avast Internet Security 11.1.2245

11.1.2245

Avast Internet Security 11.1.2253

11.1.2253

Avast Internet Security 11.1.2260

11.1.2260

Avast Internet Security 11.1.2261

11.1.2261

Avast Internet Security 11.1.2262

11.1.2262

Avast Premier 11.1.2241

11.1.2241

Avast Premier 11.1.2245

11.1.2245

Avast Premier 11.1.2253

11.1.2253

Avast Premier 11.1.2260

11.1.2260

Avast Premier 11.1.2261

11.1.2261

Avast Premier 11.1.2262

11.1.2262

Avast Pro Antivirus 11.1.2241

11.1.2241

Avast Pro Antivirus 11.1.2245

11.1.2245

Avast Pro Antivirus 11.1.2253

11.1.2253

Avast Pro Antivirus 11.1.2260

11.1.2260

Avast Pro Antivirus 11.1.2261

11.1.2261

Avast Pro Antivirus 11.1.2262

11.1.2262

Avast Email Server Security 8.0.1606

8.0.1606

Avast Endpoint Protection 8.0.1606

8.0.1606

Avast Endpoint Protection Plus 8.0.1606

8.0.1606

Avast Endpoint Protection Plus 8.0.1609

8.0.1609

Avast Endpoint Protection Suite 8.0.1606

8.0.1606

Avast Endpoint Protection Suite Plus 8.0.1606

8.0.1606

Avast File Server Security 8.0.1606

8.0.1606

References

https://labs.nettitude.com/blog/escaping-avast-sandbox-using-single-ioctl-cve-2016-4025/

Technical Description, Third Party Advisory

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.