• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Avast! Managed Client SIS File Handling Remote Heap Overflow Vulnerability

Avast! Managed Client is prone to a heap-overflow vulnerability in its SIS-processing routines.

A successful attack can allow a remote attacker to corrupt process memory by triggering an overflow condition. The attacker may then be able to execute arbitrary code and fully compromise the computer.

Versions of Avast! Managed Client earlier than 4.7.700 are vulnerable to this issue.

This issue may be related to BID 24132: Avast! Managed Client CAB File Handling Remote Heap Overflow Vulnerability.