cbcvebase.
CVE-2009-3522
published 2009-10-01

CVE-2009-3522: Stack-based buffer overflow in aswMon2.sys in avast! Home and Professional for Windows 4.8.1351, and possibly other versions before 4.8.1356, allows local…

PriorityP434high7.2CVSS 2.0
AVLACLAuNCCICAC
EXPLOIT
EPSS
0.95%
56.7th percentile
Stack-based buffer overflow in aswMon2.sys in avast! Home and Professional for Windows 4.8.1351, and possibly other versions before 4.8.1356, allows local users to cause a denial of service (system crash) and possibly gain privileges via a crafted IOCTL request to IOCTL 0xb2c80018.

Affected

2 ranges
VendorProductVersion rangeFixed in
avastavast_antivirus_home
avastavast_antivirus_professional
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.