Author Topic: Avast! 4.8.1335 Professional Local Kernel Buffer Overflow Exploit  (Read 10472 times)

0 Members and 1 Guest are viewing this topic.

Erroneus

  • Guest
You might wan't to fix this:

http://www.milw0rm.com/exploits/9492

spg SCOTT

  • Guest
Re: Avast! 4.8.1335 Professional Local Kernel Buffer Overflow Exploit
« Reply #1 on: August 24, 2009, 10:31:43 PM »
We are at 4.8.1351 now,

http://www.avast.com/eng/avast-4-home_pro-revision-history.html

Comments from Vlk, prior to the update:

You're right, we'll be releasing a new 4.8 update soon. The main reason is that there's a security vulnerability in avast 4.8.1335 (in one of its kernel mode drivers) that needs to be fixed. Plus, there are some improvements in the scanning engine as well (in line with v5 preparations).

We didn't quite mean to release it as a beta first, but since you've already found it (as something we're currently testing)... be our guests.

I expect it will be officially released ~ next Tuesday (as time permits).

Thanks
Vlk

I think they did ;)

-Scott-

Offline Vlk

  • Avast CEO
  • Serious Graphoman
  • *
  • Posts: 11658
  • Please don't send me IM's. Email only. Thx.
    • ALWIL Software
Re: Avast! 4.8.1335 Professional Local Kernel Buffer Overflow Exploit
« Reply #2 on: August 25, 2009, 01:20:20 AM »
Yep, this issue is fixed in v4.8.1351.

Thanks
Vlk
If at first you don't succeed, then skydiving's not for you.

spg SCOTT

  • Guest
Re: Avast! 4.8.1335 Professional Local Kernel Buffer Overflow Exploit
« Reply #3 on: August 25, 2009, 11:39:08 AM »
Yep, this issue is fixed in v4.8.1351.

Thanks
Vlk

Thanks for confirming Vlk :)

pete319

  • Guest
Re: Avast! 4.8.1335 Professional Local Kernel Buffer Overflow Exploit
« Reply #4 on: August 26, 2009, 11:39:27 AM »
They are also reporting this on Secunia,
http://secunia.com/advisories/36442/

Yes i know it is fixed in version  v4.8.1351.
EDIT: Just i thought i would pass it on
« Last Edit: August 26, 2009, 11:44:20 AM by pete319 »

Offline calcu007

  • Avast Evangelist
  • Poster
  • ***
  • Posts: 482
  • I'm lamma!
Re: Avast! 4.8.1335 Professional Local Kernel Buffer Overflow Exploit
« Reply #5 on: August 26, 2009, 12:32:07 PM »
They are also reporting this on Secunia,
http://secunia.com/advisories/36442/

Yes i know it is fixed in version  v4.8.1351.
EDIT: Just i thought i would pass it on

if you know that was fixed then why posted it? It mislead customer
Asus Intel i7 8GB RAM , Win 8.1 64 bit, Avast IS

pete319

  • Guest
Re: Avast! 4.8.1335 Professional Local Kernel Buffer Overflow Exploit
« Reply #6 on: August 26, 2009, 12:36:57 PM »
They are also reporting this on Secunia,
http://secunia.com/advisories/36442/

Yes i know it is fixed in version  v4.8.1351.
EDIT: Just i thought i would pass it on

if you know that was fixed then why posted it? It mislead customer

Hi calcu007
I can not see how you say i mislead customer as all i was pointing out was Secunia has released it also.
As you have read this thread you would know that it has been fixed.
If for some reason you took offense that was not my intention.

hlecter

  • Guest
Re: Avast! 4.8.1335 Professional Local Kernel Buffer Overflow Exploit
« Reply #7 on: August 26, 2009, 06:41:46 PM »
If anybody are misleading in this case it's Secunia which Status for the patch by now is 'unpatched'.

Pete has mislead nobody if you care to read the whole thread, especially what Vlk said near the beginning of the thread.

Something never change.   :(

HL.


pete319

  • Guest
Re: Avast! 4.8.1335 Professional Local Kernel Buffer Overflow Exploit
« Reply #8 on: August 27, 2009, 08:17:26 AM »
If anybody are misleading in this case it's Secunia which Status for the patch by now is 'unpatched'.

Pete has mislead nobody if you care to read the whole thread, especially what Vlk said near the beginning of the thread.

Something never change.   :(

HL.



Cheers hlecter and thanks ;)

Offline Marc57

  • Avast Evangelist
  • Super Poster
  • ***
  • Posts: 1944
  • KISS Rules The World!!!
    • KISS Army
Re: Avast! 4.8.1335 Professional Local Kernel Buffer Overflow Exploit
« Reply #9 on: August 27, 2009, 08:30:37 AM »
I have sent a Note to Secunia with a link to this thread stating that this has been fixed.
You Wanted the Best You Got the Best the Hottest Band in the World KISS!!!

pete319

  • Guest
Re: Avast! 4.8.1335 Professional Local Kernel Buffer Overflow Exploit
« Reply #10 on: August 27, 2009, 08:44:29 AM »
I have sent a Note to Secunia with a link to this thread stating that this has been fixed.

Thanks Marc57 ;)
I never even gave that a thought, which i should really have down first. :-[

YoKenny

  • Guest
Re: Avast! 4.8.1335 Professional Local Kernel Buffer Overflow Exploit
« Reply #11 on: August 27, 2009, 11:39:14 AM »
I have sent a Note to Secunia with a link to this thread stating that this has been fixed.

Oh dear.

Too close for comfort.
Quote
MEDIA SPOILED OSHAWA SURPRISE
CANADIAN PRESS
 Kiss frontman Gene Simmons says the media is to blame for spoiling a surprise the band had in store for Oshawa, Ont.
Earlier this year, Kiss asked fans around the world to go to their website and vote for their hometown to be included in the band's next big tour.

Oshawa finished first among all cities, but when the dates for the tour were announced this week, the Ontario city was left off the list.

Fans and politicians in Oshawa were outraged and Kiss eventually announced that it will play the city on Oct. 7
http://www.kissonline.com/stream/article/display/id/18524

Secunia are a bit slow in updating their information.
« Last Edit: August 27, 2009, 11:41:51 AM by YoKenny »

Offline Marc57

  • Avast Evangelist
  • Super Poster
  • ***
  • Posts: 1944
  • KISS Rules The World!!!
    • KISS Army
Re: Avast! 4.8.1335 Professional Local Kernel Buffer Overflow Exploit
« Reply #12 on: August 27, 2009, 05:50:18 PM »
Your welcome Pete, Thanks for the news YoKenny, I hadn't heard about that.
« Last Edit: August 27, 2009, 06:10:51 PM by Marc57 »
You Wanted the Best You Got the Best the Hottest Band in the World KISS!!!

Offline Marc57

  • Avast Evangelist
  • Super Poster
  • ***
  • Posts: 1944
  • KISS Rules The World!!!
    • KISS Army
Re: Avast! 4.8.1335 Professional Local Kernel Buffer Overflow Exploit
« Reply #13 on: August 27, 2009, 06:08:32 PM »
It's been updated, Under "Solution" on page two it says "Update to version 4.8.1351"

http://secunia.com/advisories/36442/2/
You Wanted the Best You Got the Best the Hottest Band in the World KISS!!!

Offline DavidR

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 88898
  • No support PMs thanks
Re: Avast! 4.8.1335 Professional Local Kernel Buffer Overflow Exploit
« Reply #14 on: August 27, 2009, 06:55:34 PM »
You would think that they would put the resolution on page one, how many bother going to the other pages. Or at least make it clear on page one that it isn't outstanding.
Windows 10 Home 64bit/ Acer Aspire F15/ Intel Core i5 7200U 2.5GHz, 8GB DDR4 memory, 256GB SSD, 1TB HDD/ avast! free 24.2.6105 (build 24.2.8918.824) UI 1.0.799/ Firefox, uBlock Origin, uMatrix/ MailWasher Pro/ Avast! Mobile Security