• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Avast! Managed Client CAB File Handling Remote Heap Overflow Vulnerability

Avast! Managed Client is prone to a heap-overflow vulnerability in its CAB-processing routines.

A successful attack can allow a remote attacker to corrupt process memory by triggering an overflow condition. The attacker may then be able to execute arbitrary code and fully compromise the computer.

Versions of Avast! Managed Client earlier than 4.7.700 are vulnerable to this issue.