Avast Free Antivirus Multiple Vulnerabilities CVE-2017-8308CVE-2017-8307
- CVSSv3 Score
- Vulnerability description
Avast Free Antivirus is prone to multiple vulnerabilities.
- Risk description
Multiple flaws exist due to design errors in the application. Using LPC interface API exposed by the AvastSVC.exe Windows service it is possible to delete arbitrary file, replace arbitrary file and launch predefined binaries. Successful exploitation will allow attackers to conduct a denial-of-service condition, execute arbitrary code and bypass certain security features on the affected system.
Upgrade to Avast Free Antivirus version 17.0 or later.
- Not available