Avast Virtualization Driver (aswSnx.sys) Unicode File Path Privilege Escalation Vulnerability

CVE-2015-8620 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Heap-based buffer overflow in the Avast virtualization driver (aswSnx.sys) in Avast Internet Security, Pro Antivirus, Premier, and Free Antivirus before 11.1.2253 allows local users to gain privileges via a Unicode file path in an IOCTL request.

Learn more about our User Device Pen Test.