Free and open-source vulnerability scanner
Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.
Install NowAvailable for macOS, Windows, and Linux
Avast Antivirus (All Editions) < 19.8 DLL Preloading Vulnerability (Windows)
Information
Severity
Severity
Family
Family
CVSSv2 Base
CVSSv2 Base
CVSSv2 Vector
CVSSv2 Vector
Solution Type
Solution Type
Created
Created
Modified
Modified
Summary
This host is running Avast Antivirus and is prone to a dll preloading vulnerability.
Insight
Insight
The vulnerability gives attackers the ability to: - load and execute malicious payloads using multiple signed services, within the context of Avast signed processes - bypass the part of the self-defense mechanism that should prevent an attacker from tampering with processes and files of Avast Antivirus and load an arbitrary DLL into the Antivirus process - load and execute malicious payloads in a persistent way, each time the services are loaded.
Affected Software
Affected Software
All Editions of Avast Antivirus before version 19.8.
Detection Method
Detection Method
Checks if a vulnerable version is present on the target host.
Solution
Solution
Update to Avast Antivirus version 19.8 or later.