Google security researcher publishes a proof-of-concept showing how Avast renders the commonName of X.509 certificates into an HTMLLayout frame when the user MITM proxy detects a bad signature. Avast has already rolled out an update to fix this issue.
More information is available here – https://code.google.com/p/google-security-research/issues/detail?id=546