Avast! opens the hunt for mistakes
Avast is interested in the following types of vulnerabilities:
The reward depends on the level of criticality and starts at $ 200. The cost will be determined by a special commission. It is also possible to change the value of the found vulnerability of the principle - the more reports on the bug, the less will be its value.
Only errors in Avast products and its libraries, i.e. for a found vulnerability in another library (for example, from Microsoft) that is somehow used by the antivirus - will not be paid.
')
Payment of rewards will be made through PayPal, otherwise you need to contact the support to find other alternative ways.
All reports are sent to this e-mail bugs@avast.com . More details on the link
- Remote code execution ($ 3000- $ 5000 maybe more)
- Privilege escalation
- DoS (BSOD or avast'a process hang / crash)
- Going beyond the antivirus sandbox
- Scanner bypass (clean bypass, without changing known virus signatures)
- Etc.
The reward depends on the level of criticality and starts at $ 200. The cost will be determined by a special commission. It is also possible to change the value of the found vulnerability of the principle - the more reports on the bug, the less will be its value.
Only errors in Avast products and its libraries, i.e. for a found vulnerability in another library (for example, from Microsoft) that is somehow used by the antivirus - will not be paid.
')
Payment of rewards will be made through PayPal, otherwise you need to contact the support to find other alternative ways.
All reports are sent to this e-mail bugs@avast.com . More details on the link
Source: https://habr.com/ru/post/167179/
All Articles