• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

AVG Anti-Virus Local Privilege Escalation Vulnerability

AVG Anti-Virus is prone to a local privilege-escalation vulnerability because the application fails to properly limit unprivileged users from functionality that allows them to write arbitrary data to arbitrary kernel memory.

Successfully exploiting this issue allows local attackers to gain SYSTEM-level privileges, facilitating the complete compromise of affected computers.

AVG Anti-Virus Free Edition 7.5.446 and AVG Anti-Virus 7.5.438 are vulnerable; other versions may also be affected.