Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Kaspersky_anti\-Virus_personal
(Kaspersky_lab)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 5 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2009-12-29 | CVE-2009-4452 | Kaspersky Anti-Virus 5.0 (5.0.712); Antivirus Personal 5.0.x; Anti-Virus 6.0 (6.0.3.837), 7 (7.0.1.325), 2009 (8.0.0.x), and 2010 (9.0.0.463); and Internet Security 7 (7.0.1.325), 2009 (8.0.0.x), and 2010 (9.0.0.463); use weak permissions (Everyone:Full Control) for the BASES directory, which allows local users to gain SYSTEM privileges by replacing an executable or DLL with a Trojan horse. | Kaspersky_anti\-Virus, Kaspersky_anti\-Virus_2009, Kaspersky_anti\-Virus_2010, Kaspersky_anti\-Virus_personal, Kaspersky_internet_security, Kaspersky_internet_security_2009, Kaspersky_internet_security_2010 | N/A | ||
| 2006-10-20 | CVE-2006-4926 | The NDIS-TDI Hooking Engine, as used in the (1) KLICK (KLICK.SYS) and (2) KLIN (KLIN.SYS) device drivers 2.0.0.281 for in Kaspersky Labs Anti-Virus 6.0.0.303 and other Anti-Virus and Internet Security products, allows local users to execute arbitrary code via crafted Irp structure with invalid addresses in the 0x80052110 IOCTL. | Kaspersky_anti\-Virus, Kaspersky_anti\-Virus_personal, Kaspersky_anti\-Virus_personal_pro, Kaspersky_internet_security | N/A | ||
| 2005-11-18 | CVE-2005-3664 | Heap-based buffer overflow in Kaspersky Anti-Virus Engine, as used in Kaspersky Personal 5.0.227, Anti-Virus On-Demand Scanner for Linux 5.0.5, and F-Secure Anti-Virus for Linux 4.50 allows remote attackers to execute arbitrary code via a crafted CHM file. | F\-Secure_anti\-Virus, Kaspersky_anti\-Virus, Kaspersky_anti\-Virus_personal | N/A | ||
| 2005-10-05 | CVE-2005-3142 | Heap-based buffer overflow in Kaspersky Antivirus (KAV) 5.0 and Kaspersky Personal Security Suite 1.1 allows remote attackers to execute arbitrary code via a CAB file with large records after the header. | Kaspersky_anti\-Virus, Kaspersky_anti\-Virus_personal, Kaspersky_anti\-Virus_personal_pro, Kaspersky_personal_security_suite | N/A | ||
| 2005-06-09 | CVE-2005-1905 | The klif.sys driver in Kaspersky Labs Anti-Virus 5.0.227, 5.0.228, and 5.0.335 on Windows 2000 allows local users to gain privileges by modifying certain critical code addresses that are later accessed by privileged programs. | Kaspersky_anti\-Virus, Kaspersky_anti\-Virus_personal | N/A |