CVE-2009-0449

Опубликовано: 10 фев. 2009

Источник: nvd

CVSS2: 7.2

EPSS Низкий

Описание

Buffer overflow in klim5.sys in Kaspersky Anti-Virus for Workstations 6.0 and Anti-Virus 2008 allows local users to gain privileges via an IOCTL 0x80052110 call.

Ссылки

http://kartoffel.reversemode.com/downloads/kaspersky_klim5_plugin.zip
http://secunia.com/advisories/33788
Vendor Advisory
http://www.reversemode.com/index.php?option=com_content&task=view&id=60&Itemid=1
http://www.securityfocus.com/archive/1/500606/100/0/threaded
http://www.securityfocus.com/bid/33561
Exploit
http://www.securitytracker.com/id?1021661
http://www.wintercore.com/advisories/advisory_W020209.html
http://kartoffel.reversemode.com/downloads/kaspersky_klim5_plugin.zip
http://secunia.com/advisories/33788
Vendor Advisory
http://www.reversemode.com/index.php?option=com_content&task=view&id=60&Itemid=1
http://www.securityfocus.com/archive/1/500606/100/0/threaded
http://www.securityfocus.com/bid/33561
Exploit
http://www.securitytracker.com/id?1021661
http://www.wintercore.com/advisories/advisory_W020209.html

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:kaspersky_lab:kaspersky_anti-virus:6.0:*:workstations:*:*:*:*:*

cpe:2.3:a:kaspersky_lab:kaspersky_anti-virus:2008:*:*:*:*:*:*:*

EPSS

Процентиль: 55%

0.0032

Низкий

7.2 High

CVSS2

Дефекты

CWE-119

Связанные уязвимости

GHSA-v9pr-44cq-49hh

github

почти 4 года назад