Unrated severityNVD Advisory· Published Dec 28, 2014· Updated May 6, 2026

CVE-2010-5075

Description

Integer overflow in aswFW.sys 5.0.594.0 in Avast! Internet Security 5.0 Korean Trial allows local users to cause a denial of service (memory corruption and panic) via a crafted IOCTL_ASWFW_COMM_PIDINFO_RESULTS DeviceIoControl request to \\.\aswFW.

Affected products

Avast\!/Avast Internet Security
cpe:2.3:a:avast\!:avast\!_internet_security:5.0:*:*:*:korean_trial:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.securityfocus.com/bid/42148nvdExploit
web.archive.org/web/20120228033302/http://www.x90c.org/advisories/avast_internet_security_5.0_memory_corruption_advisory.txtnvdExploit
x90c.blogspot.com/2011/11/avast-internet-security-aswfwsys-ioctl.htmlnvd
x90c.blogspot.com/2011/12/bid-42148-my-avast-kernel-driver-0day_01.htmlnvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000