exploitDog

GHSA-278p-2ghg-cvch

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 5.5

Описание

A denial of service vulnerability exists in the IOCTL handling functionality of Kaspersky Internet Security KL1 driver. A specially crafted IOCTL signal can cause an access violation in KL1 kernel driver resulting in local system denial of service. An attacker can run a program from user-mode to trigger this vulnerability.

A denial of service vulnerability exists in the IOCTL handling functionality of Kaspersky Internet Security KL1 driver. A specially crafted IOCTL signal can cause an access violation in KL1 kernel driver resulting in local system denial of service. An attacker can run a program from user-mode to trigger this vulnerability.

Ссылки

EPSS

Процентиль: 23%

0.00075

Низкий

5.5 Medium

CVSS3

CVE ID

Дефекты

CWE-284

Связанные уязвимости

CVE-2016-4307

CVSS3: 5.5

nvd

почти 9 лет назад

A denial of service vulnerability exists in the IOCTL handling functionality of Kaspersky Internet Security KL1 driver. A specially crafted IOCTL signal can cause an access violation in KL1 kernel driver resulting in local system denial of service. An attacker can run a program from user-mode to trigger this vulnerability.

BDU:2016-02037

fstec

больше 9 лет назад

Уязвимость средства антивирусной защиты Kaspersky Internet Security, позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 23%

0.00075

Низкий

5.5 Medium

CVSS3

CVE ID

Дефекты

CWE-284