MidnightBSD

Advisories for kaspersky

CVE-2001-0789 HIGH

Format string vulnerability in avpkeeper in Kaspersky KAV 3.5.135.2 for Sendmail allows remote attackers to cause a denial of service or possibly execute arbitrary code via a malformed mail message.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
kaspersky kaspersky_anti-virus 3.5.132.2
CVE-2006-3074 MEDIUM

klif.sys in Kaspersky Internet Security 6.0 and 7.0, Kaspersky Anti-Virus (KAV) 6.0 and 7.0, KAV 6.0 for Windows Workstations, and KAV 6.0 for Windows Servers does not validate certain parameters to the (1) NtCreateKey, (2) NtCreateProcess, (3) NtCreateProcessEx, (4) NtCreateSection, (5) NtCreateSymbolicLinkObject, (6) NtCreateThread, (7) NtDeleteValueKey, (8) NtLoadKey2, (9) NtOpenKey, (10) NtOpenProcess, (11) NtOpenSection, and (12) NtQueryValueKey hooked system calls, which allows local users to cause a denial of service (reboot) via an invalid parameter, as demonstrated by the ClientId parameter to NtOpenProcess.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
kaspersky kaspersky_anti-virus 6.0
kaspersky kaspersky_anti-virus 7.0
kaspersky kaspersky_internet_security 6.0
kaspersky kaspersky_internet_security 7.0
CVE-2010-5163 MEDIUM

Race condition in Kaspersky Internet Security 2010 9.0.0.736 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory changes during hook-handler execution, aka an argument-switch attack or a KHOBE attack. NOTE: this issue is disputed by some third parties because it is a flaw in a protection mechanism for situations where a crafted program has already begun to execute

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-362,

Products Affected

Vendor Product Version
kaspersky kaspersky_internet_security_2010 9.0.0.736
CVE-2012-1420 MEDIUM

The TAR file parser in Quick Heal (aka Cat QuickHeal) 11.00, Command Antivirus 5.2.11.5, F-Prot Antivirus 4.6.2.117, Fortinet Antivirus 4.2.254.0, K7 AntiVirus 9.77.3565, Kaspersky Anti-Virus 7.0.0.125, Antimalware Engine 1.1.6402.0 in Microsoft Security Essentials 2.0, NOD32 Antivirus 5795, Norman Antivirus 6.06.12, Panda Antivirus 10.0.2.7, and Rising Antivirus 22.83.00.03 allows remote attackers to bypass malware detection via a POSIX TAR file with an initial \7fELF character sequence. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different TAR parser implementations.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
norman norman_antivirus_&_antispyware 6.06.12
rising-global rising_antivirus 22.83.00.03
cat quick_heal 11.00
authentium command_antivirus 5.2.11.5
fortinet fortinet_antivirus 4.2.254.0
microsoft security_essentials 2.0
eset nod32_antivirus 5795
pandasecurity panda_antivirus 10.0.2.7
kaspersky kaspersky_anti-virus 7.0.0.125
f-prot f-prot_antivirus 4.6.2.117
k7computing antivirus 9.77.3565
CVE-2012-1425 MEDIUM

The TAR file parser in Avira AntiVir 7.11.1.163, Antiy Labs AVL SDK 2.0.3.7, Quick Heal (aka Cat QuickHeal) 11.00, Emsisoft Anti-Malware 5.1.0.1, Fortinet Antivirus 4.2.254.0, Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0, Jiangmin Antivirus 13.0.900, Kaspersky Anti-Virus 7.0.0.125, McAfee Anti-Virus Scanning Engine 5.400.0.1158, McAfee Gateway (formerly Webwasher) 2010.1C, NOD32 Antivirus 5795, Norman Antivirus 6.06.12, PC Tools AntiVirus 7.0.3.5, AVEngine 20101.3.0.103 in Symantec Endpoint Protection 11, Trend Micro AntiVirus 9.120.0.1004, and Trend Micro HouseCall 9.120.0.1004 allows remote attackers to bypass malware detection via a POSIX TAR file with an initial \50\4B\03\04 character sequence. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different TAR parser implementations.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
norman norman_antivirus_&_antispyware 6.06.12
pc_tools pc_tools_antivirus 7.0.3.5
cat quick_heal 11.00
avira antivir 7.11.1.163
mcafee scan_engine 5.400.0.1158
emsisoft anti-malware 5.1.0.1
antiy avl_sdk 2.0.3.7
symantec endpoint_protection 11.0
ikarus ikarus_virus_utilities_t3_command_line_scanner 1.1.97.0
jiangmin jiangmin_antivirus 13.0.900
fortinet fortinet_antivirus 4.2.254.0
mcafee gateway 2010.1c
trendmicro trend_micro_antivirus 9.120.0.1004
eset nod32_antivirus 5795
kaspersky kaspersky_anti-virus 7.0.0.125
trendmicro housecall 9.120.0.1004
CVE-2012-1442 MEDIUM

The ELF file parser in Quick Heal (aka Cat QuickHeal) 11.00, McAfee Anti-Virus Scanning Engine 5.400.0.1158, McAfee Gateway (formerly Webwasher) 2010.1C, eSafe 7.0.17.0, Kaspersky Anti-Virus 7.0.0.125, F-Secure Anti-Virus 9.0.16160.0, Sophos Anti-Virus 4.61.0, Antiy Labs AVL SDK 2.0.3.7, Rising Antivirus 22.83.00.03, Fortinet Antivirus 4.2.254.0, and Panda Antivirus 10.0.2.7 allows remote attackers to bypass malware detection via an ELF file with a modified class field. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different ELF parser implementations.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
rising-global rising_antivirus 22.83.00.03
cat quick_heal 11.00
fortinet fortinet_antivirus 4.2.254.0
mcafee gateway 2010.1c
mcafee scan_engine 5.400.0.1158
antiy avl_sdk 2.0.3.7
pandasecurity panda_antivirus 10.0.2.7
sophos sophos_anti-virus 4.61.0
f-secure f-secure_anti-virus 9.0.16160.0
kaspersky kaspersky_anti-virus 7.0.0.125
aladdin esafe 7.0.17.0
CVE-2012-1443 MEDIUM

The RAR file parser in ClamAV 0.96.4, Rising Antivirus 22.83.00.03, Quick Heal (aka Cat QuickHeal) 11.00, G Data AntiVirus 21, AVEngine 20101.3.0.103 in Symantec Endpoint Protection 11, Command Antivirus 5.2.11.5, Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0, Emsisoft Anti-Malware 5.1.0.1, PC Tools AntiVirus 7.0.3.5, F-Prot Antivirus 4.6.2.117, VirusBuster 13.6.151.0, Fortinet Antivirus 4.2.254.0, Antiy Labs AVL SDK 2.0.3.7, K7 AntiVirus 9.77.3565, Trend Micro HouseCall 9.120.0.1004, Kaspersky Anti-Virus 7.0.0.125, Jiangmin Antivirus 13.0.900, Antimalware Engine 1.1.6402.0 in Microsoft Security Essentials 2.0, Sophos Anti-Virus 4.61.0, NOD32 Antivirus 5795, Avira AntiVir 7.11.1.163, Norman Antivirus 6.06.12, McAfee Anti-Virus Scanning Engine 5.400.0.1158, Panda Antivirus 10.0.2.7, McAfee Gateway (formerly Webwasher) 2010.1C, Trend Micro AntiVirus 9.120.0.1004, Comodo Antivirus 7424, Bitdefender 7.2, eSafe 7.0.17.0, F-Secure Anti-Virus 9.0.16160.0, nProtect Anti-Virus 2011-01-17.01, AhnLab V3 Internet Security 2011.01.18.00, AVG Anti-Virus 10.0.0.1190, avast! Antivirus 4.8.1351.0 and 5.0.677.0, and VBA32 3.12.14.2 allows user-assisted remote attackers to bypass malware detection via a RAR file with an initial MZ character sequence. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different RAR parser implementations.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
norman norman_antivirus_&_antispyware 6.06.12
rising-global rising_antivirus 22.83.00.03
cat quick_heal 11.00
avira antivir 7.11.1.163
comodo comodo_antivirus 7424
emsisoft anti-malware 5.1.0.1
antiy avl_sdk 2.0.3.7
gdata-software g_data_antivirus 21
f-prot f-prot_antivirus 4.6.2.117
aladdin esafe 7.0.17.0
ahnlab v3_internet_security 2011.01.18.00
jiangmin jiangmin_antivirus 13.0.900
avg avg_anti-virus 10.0.0.1190
authentium command_antivirus 5.2.11.5
nprotect nprotect_antivirus 2011-01-17.01
pandasecurity panda_antivirus 10.0.2.7
kaspersky kaspersky_anti-virus 7.0.0.125
pc_tools pc_tools_antivirus 7.0.3.5
anti-virus vba32 3.12.14.2
microsoft security_essentials 2.0
mcafee scan_engine 5.400.0.1158
alwil avast_antivirus 5.0.677.0
symantec endpoint_protection 11.0
f-secure f-secure_anti-virus 9.0.16160.0
k7computing antivirus 9.77.3565
virusbuster virusbuster 13.6.151.0
ikarus ikarus_virus_utilities_t3_command_line_scanner 1.1.97.0
alwil avast_antivirus 4.8.1351.0
fortinet fortinet_antivirus 4.2.254.0
mcafee gateway 2010.1c
trendmicro trend_micro_antivirus 9.120.0.1004
clamav clamav 0.96.4
eset nod32_antivirus 5795
sophos sophos_anti-virus 4.61.0
trendmicro housecall 9.120.0.1004
bitdefender bitdefender 7.2
CVE-2012-1446 MEDIUM

The ELF file parser in Quick Heal (aka Cat QuickHeal) 11.00, McAfee Anti-Virus Scanning Engine 5.400.0.1158, AVEngine 20101.3.0.103 in Symantec Endpoint Protection 11, Norman Antivirus 6.06.12, eSafe 7.0.17.0, Kaspersky Anti-Virus 7.0.0.125, McAfee Gateway (formerly Webwasher) 2010.1C, Sophos Anti-Virus 4.61.0, CA eTrust Vet Antivirus 36.1.8511, Antiy Labs AVL SDK 2.0.3.7, PC Tools AntiVirus 7.0.3.5, Rising Antivirus 22.83.00.03, Fortinet Antivirus 4.2.254.0, and Panda Antivirus 10.0.2.7 allows remote attackers to bypass malware detection via an ELF file with a modified encoding field. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different ELF parser implementations.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
norman norman_antivirus_&_antispyware 6.06.12
pc_tools pc_tools_antivirus 7.0.3.5
rising-global rising_antivirus 22.83.00.03
cat quick_heal 11.00
mcafee scan_engine 5.400.0.1158
ca etrust_vet_antivirus 36.1.8511
antiy avl_sdk 2.0.3.7
symantec endpoint_protection 11.0
aladdin esafe 7.0.17.0
fortinet fortinet_antivirus 4.2.254.0
mcafee gateway 2010.1c
pandasecurity panda_antivirus 10.0.2.7
sophos sophos_anti-virus 4.61.0
kaspersky kaspersky_anti-virus 7.0.0.125
CVE-2012-1453 MEDIUM

The CAB file parser in Dr.Web 5.0.2.03300, Trend Micro HouseCall 9.120.0.1004, Kaspersky Anti-Virus 7.0.0.125, Sophos Anti-Virus 4.61.0, Trend Micro AntiVirus 9.120.0.1004, McAfee Gateway (formerly Webwasher) 2010.1C, Emsisoft Anti-Malware 5.1.0.1, CA eTrust Vet Antivirus 36.1.8511, Antiy Labs AVL SDK 2.0.3.7, Antimalware Engine 1.1.6402.0 in Microsoft Security Essentials 2.0, Rising Antivirus 22.83.00.03, Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0, Fortinet Antivirus 4.2.254.0, and Panda Antivirus 10.0.2.7 allows remote attackers to bypass malware detection via a CAB file with a modified coffFiles field. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different CAB parser implementations.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
rising-global rising_antivirus 22.83.00.03
microsoft security_essentials 2.0
ca etrust_vet_antivirus 36.1.8511
emsisoft anti-malware 5.1.0.1
antiy avl_sdk 2.0.3.7
drweb dr.web_antivirus 5.0.2.03300
ikarus ikarus_virus_utilities_t3_command_line_scanner 1.1.97.0
fortinet fortinet_antivirus 4.2.254.0
mcafee gateway 2010.1c
trendmicro trend_micro_antivirus 9.120.0.1004
pandasecurity panda_antivirus 10.0.2.7
sophos sophos_anti-virus 4.61.0
kaspersky kaspersky_anti-virus 7.0.0.125
trendmicro housecall 9.120.0.1004
CVE-2012-1456 MEDIUM

The TAR file parser in AVG Anti-Virus 10.0.0.1190, Quick Heal (aka Cat QuickHeal) 11.00, Comodo Antivirus 7424, Emsisoft Anti-Malware 5.1.0.1, eSafe 7.0.17.0, F-Prot Antivirus 4.6.2.117, Fortinet Antivirus 4.2.254.0, Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0, Jiangmin Antivirus 13.0.900, Kaspersky Anti-Virus 7.0.0.125, McAfee Anti-Virus Scanning Engine 5.400.0.1158, McAfee Gateway (formerly Webwasher) 2010.1C, NOD32 Antivirus 5795, Norman Antivirus 6.06.12, Panda Antivirus 10.0.2.7, Rising Antivirus 22.83.00.03, Sophos Anti-Virus 4.61.0, AVEngine 20101.3.0.103 in Symantec Endpoint Protection 11, Trend Micro AntiVirus 9.120.0.1004, and Trend Micro HouseCall 9.120.0.1004 allows remote attackers to bypass malware detection via a TAR file with an appended ZIP file. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different TAR parser implementations.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
norman norman_antivirus_&_antispyware 6.06.12
rising-global rising_antivirus 22.83.00.03
cat quick_heal 11.00
mcafee scan_engine 5.400.0.1158
comodo comodo_antivirus 7424
emsisoft anti-malware 5.1.0.1
symantec endpoint_protection 11.0
f-prot f-prot_antivirus 4.6.2.117
aladdin esafe 7.0.17.0
ikarus ikarus_virus_utilities_t3_command_line_scanner 1.1.97.0
jiangmin jiangmin_antivirus 13.0.900
avg avg_anti-virus 10.0.0.1190
fortinet fortinet_antivirus 4.2.254.0
mcafee gateway 2010.1c
trendmicro trend_micro_antivirus 9.120.0.1004
eset nod32_antivirus 5795
pandasecurity panda_antivirus 10.0.2.7
sophos sophos_anti-virus 4.61.0
kaspersky kaspersky_anti-virus 7.0.0.125
trendmicro housecall 9.120.0.1004
CVE-2012-1457 MEDIUM

The TAR file parser in Avira AntiVir 7.11.1.163, Antiy Labs AVL SDK 2.0.3.7, avast! Antivirus 4.8.1351.0 and 5.0.677.0, AVG Anti-Virus 10.0.0.1190, Bitdefender 7.2, Quick Heal (aka Cat QuickHeal) 11.00, ClamAV 0.96.4, Command Antivirus 5.2.11.5, Emsisoft Anti-Malware 5.1.0.1, eSafe 7.0.17.0, F-Prot Antivirus 4.6.2.117, G Data AntiVirus 21, Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0, Jiangmin Antivirus 13.0.900, K7 AntiVirus 9.77.3565, Kaspersky Anti-Virus 7.0.0.125, McAfee Anti-Virus Scanning Engine 5.400.0.1158, McAfee Gateway (formerly Webwasher) 2010.1C, Antimalware Engine 1.1.6402.0 in Microsoft Security Essentials 2.0, NOD32 Antivirus 5795, Norman Antivirus 6.06.12, PC Tools AntiVirus 7.0.3.5, Rising Antivirus 22.83.00.03, AVEngine 20101.3.0.103 in Symantec Endpoint Protection 11, Trend Micro AntiVirus 9.120.0.1004, Trend Micro HouseCall 9.120.0.1004, VBA32 3.12.14.2, and VirusBuster 13.6.151.0 allows remote attackers to bypass malware detection via a TAR archive entry with a length field that exceeds the total TAR file size. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different TAR parser implementations.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
norman norman_antivirus_&_antispyware 6.06.12
rising-global rising_antivirus 22.83.00.03
cat quick_heal 11.00
avira antivir 7.11.1.163
emsisoft anti-malware 5.1.0.1
antiy avl_sdk 2.0.3.7
gdata-software g_data_antivirus 21
f-prot f-prot_antivirus 4.6.2.117
aladdin esafe 7.0.17.0
jiangmin jiangmin_antivirus 13.0.900
avg avg_anti-virus 10.0.0.1190
authentium command_antivirus 5.2.11.5
kaspersky kaspersky_anti-virus 7.0.0.125
pc_tools pc_tools_antivirus 7.0.3.5
anti-virus vba32 3.12.14.2
microsoft security_essentials 2.0
mcafee scan_engine 5.400.0.1158
alwil avast_antivirus 5.0.677.0
symantec endpoint_protection 11.0
k7computing antivirus 9.77.3565
virusbuster virusbuster 13.6.151.0
ikarus ikarus_virus_utilities_t3_command_line_scanner 1.1.97.0
alwil avast_antivirus 4.8.1351.0
mcafee gateway 2010.1c
trendmicro trend_micro_antivirus 9.120.0.1004
clamav clamav 0.96.4
eset nod32_antivirus 5795
trendmicro housecall 9.120.0.1004
bitdefender bitdefender 7.2
CVE-2012-1459 MEDIUM

The TAR file parser in AhnLab V3 Internet Security 2011.01.18.00, Avira AntiVir 7.11.1.163, Antiy Labs AVL SDK 2.0.3.7, avast! Antivirus 4.8.1351.0 and 5.0.677.0, AVG Anti-Virus 10.0.0.1190, Bitdefender 7.2, Quick Heal (aka Cat QuickHeal) 11.00, ClamAV 0.96.4, Command Antivirus 5.2.11.5, Comodo Antivirus 7424, Emsisoft Anti-Malware 5.1.0.1, F-Prot Antivirus 4.6.2.117, F-Secure Anti-Virus 9.0.16160.0, Fortinet Antivirus 4.2.254.0, G Data AntiVirus 21, Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0, Jiangmin Antivirus 13.0.900, K7 AntiVirus 9.77.3565, Kaspersky Anti-Virus 7.0.0.125, McAfee Anti-Virus Scanning Engine 5.400.0.1158, McAfee Gateway (formerly Webwasher) 2010.1C, Antimalware Engine 1.1.6402.0 in Microsoft Security Essentials 2.0, NOD32 Antivirus 5795, Norman Antivirus 6.06.12, nProtect Anti-Virus 2011-01-17.01, Panda Antivirus 10.0.2.7, PC Tools AntiVirus 7.0.3.5, Rising Antivirus 22.83.00.03, Sophos Anti-Virus 4.61.0, AVEngine 20101.3.0.103 in Symantec Endpoint Protection 11, Trend Micro AntiVirus 9.120.0.1004, Trend Micro HouseCall 9.120.0.1004, VBA32 3.12.14.2, and VirusBuster 13.6.151.0 allows remote attackers to bypass malware detection via a TAR archive entry with a length field corresponding to that entire entry, plus part of the header of the next entry. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different TAR parser implementations.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
norman norman_antivirus_&_antispyware 6.06.12
rising-global rising_antivirus 22.83.00.03
cat quick_heal 11.00
avira antivir 7.11.1.163
comodo comodo_antivirus 7424
emsisoft anti-malware 5.1.0.1
antiy avl_sdk 2.0.3.7
gdata-software g_data_antivirus 21
f-prot f-prot_antivirus 4.6.2.117
ahnlab v3_internet_security 2011.01.18.00
jiangmin jiangmin_antivirus 13.0.900
avg avg_anti-virus 10.0.0.1190
authentium command_antivirus 5.2.11.5
nprotect nprotect_antivirus 2011-01-17.01
pandasecurity panda_antivirus 10.0.2.7
kaspersky kaspersky_anti-virus 7.0.0.125
pc_tools pc_tools_antivirus 7.0.3.5
anti-virus vba32 3.12.14.2
microsoft security_essentials 2.0
mcafee scan_engine 5.400.0.1158
alwil avast_antivirus 5.0.677.0
symantec endpoint_protection 11.0
f-secure f-secure_anti-virus 9.0.16160.0
k7computing antivirus 9.77.3565
virusbuster virusbuster 13.6.151.0
ikarus ikarus_virus_utilities_t3_command_line_scanner 1.1.97.0
alwil avast_antivirus 4.8.1351.0
fortinet fortinet_antivirus 4.2.254.0
mcafee gateway 2010.1c
trendmicro trend_micro_antivirus 9.120.0.1004
clamav clamav 0.96.4
eset nod32_antivirus 5795
sophos sophos_anti-virus 4.61.0
trendmicro housecall 9.120.0.1004
bitdefender bitdefender 7.2
CVE-2012-1461 MEDIUM

The Gzip file parser in AVG Anti-Virus 10.0.0.1190, Bitdefender 7.2, Command Antivirus 5.2.11.5, Emsisoft Anti-Malware 5.1.0.1, F-Secure Anti-Virus 9.0.16160.0, Fortinet Antivirus 4.2.254.0, Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0, Jiangmin Antivirus 13.0.900, K7 AntiVirus 9.77.3565, Kaspersky Anti-Virus 7.0.0.125, McAfee Anti-Virus Scanning Engine 5.400.0.1158, McAfee Gateway (formerly Webwasher) 2010.1C, NOD32 Antivirus 5795, Norman Antivirus 6.06.12, Rising Antivirus 22.83.00.03, Sophos Anti-Virus 4.61.0, AVEngine 20101.3.0.103 in Symantec Endpoint Protection 11, Trend Micro AntiVirus 9.120.0.1004, Trend Micro HouseCall 9.120.0.1004, and VBA32 3.12.14.2 allows remote attackers to bypass malware detection via a .tar.gz file with multiple compressed streams. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different Gzip parser implementations.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
norman norman_antivirus_&_antispyware 6.06.12
rising-global rising_antivirus 22.83.00.03
anti-virus vba32 3.12.14.2
mcafee scan_engine 5.400.0.1158
emsisoft anti-malware 5.1.0.1
symantec endpoint_protection 11.0
f-secure f-secure_anti-virus 9.0.16160.0
k7computing antivirus 9.77.3565
ikarus ikarus_virus_utilities_t3_command_line_scanner 1.1.97.0
jiangmin jiangmin_antivirus 13.0.900
avg avg_anti-virus 10.0.0.1190
authentium command_antivirus 5.2.11.5
fortinet fortinet_antivirus 4.2.254.0
mcafee gateway 2010.1c
trendmicro trend_micro_antivirus 9.120.0.1004
eset nod32_antivirus 5795
sophos sophos_anti-virus 4.61.0
kaspersky kaspersky_anti-virus 7.0.0.125
trendmicro housecall 9.120.0.1004
bitdefender bitdefender 7.2
CVE-2012-1462 MEDIUM

The ZIP file parser in AhnLab V3 Internet Security 2011.01.18.00, AVG Anti-Virus 10.0.0.1190, Quick Heal (aka Cat QuickHeal) 11.00, Emsisoft Anti-Malware 5.1.0.1, eSafe 7.0.17.0, Fortinet Antivirus 4.2.254.0, Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0, Jiangmin Antivirus 13.0.900, Kaspersky Anti-Virus 7.0.0.125, Norman Antivirus 6.06.12, Sophos Anti-Virus 4.61.0, and AVEngine 20101.3.0.103 in Symantec Endpoint Protection 11 allows remote attackers to bypass malware detection via a ZIP file containing an invalid block of data at the beginning. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different ZIP parser implementations.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
ahnlab v3_internet_security 2011.01.18.00
ikarus ikarus_virus_utilities_t3_command_line_scanner 1.1.97.0
jiangmin jiangmin_antivirus 13.0.900
avg avg_anti-virus 10.0.0.1190
cat quick_heal 11.00
fortinet fortinet_antivirus 4.2.254.0
emsisoft anti-malware 5.1.0.1
symantec endpoint_protection 11.0
kaspersky kaspersky_anti-virus 7.0.0.125
aladdin esafe 7.0.17.0
CVE-2014-5654 MEDIUM

The Kaspersky Internet Security (aka com.kms.free) application 11.4.4.232 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-310,

Products Affected

Vendor Product Version
kaspersky kaspersky_internet_security 11.4.4.232
CVE-2015-8579 MEDIUM

Kaspersky Total Security 2015 15.0.2.361 allocates memory with Read, Write, Execute (RWX) permissions at predictable addresses when protecting user-mode processes, which allows attackers to bypass the DEP and ASLR protection mechanisms via unspecified vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
kaspersky total_security_2015 15.0.2.361
CVE-2016-4304 LOW

A denial of service vulnerability exists in the syscall filtering functionality of the Kaspersky Internet Security KLIF driver. A specially crafted native api call request can cause a access violation exception in KLIF kernel driver resulting in local denial of service. An attacker can run program from user-mode to trigger this vulnerability.

CVSS 2.0

Severity: LOW

Problem Type: CWE-284,

Products Affected

Vendor Product Version
kaspersky internet_security 16.0.0
CVE-2016-4305 LOW

A denial of service vulnerability exists in the syscall filtering functionality of Kaspersky Internet Security KLIF driver. A specially crafted native api call can cause a access violation in KLIF kernel driver resulting in local denial of service. An attacker can run program from user-mode to trigger this vulnerability.

CVSS 2.0

Severity: LOW

Problem Type: CWE-284,

Products Affected

Vendor Product Version
kaspersky internet_security 16.0.0
CVE-2016-4306 LOW

Multiple information leaks exist in various IOCTL handlers of the Kaspersky Internet Security KLDISK driver. Specially crafted IOCTL requests can cause the driver to return out-of-bounds kernel memory, potentially leaking sensitive information such as privileged tokens or kernel memory addresses that may be useful in bypassing kernel mitigations. An unprivileged user can run a program from user-mode to trigger this vulnerability.

CVSS 2.0

Severity: LOW

Problem Type: CWE-200,

Products Affected

Vendor Product Version
kaspersky total_security 16.0.0.614
CVE-2016-4307 LOW

A denial of service vulnerability exists in the IOCTL handling functionality of Kaspersky Internet Security KL1 driver. A specially crafted IOCTL signal can cause an access violation in KL1 kernel driver resulting in local system denial of service. An attacker can run a program from user-mode to trigger this vulnerability.

CVSS 2.0

Severity: LOW

Problem Type: CWE-284,

Products Affected

Vendor Product Version
kaspersky internet_security 16.0.0
CVE-2016-4329 LOW

A local denial of service vulnerability exists in window broadcast message handling functionality of Kaspersky Anti-Virus software. Sending certain unhandled window messages, an attacker can cause application termination and in the same way bypass KAV self-protection mechanism.

CVSS 2.0

Severity: LOW

Problem Type: CWE-20,

Products Affected

Vendor Product Version
kaspersky total_security 16.0.0.614
kaspersky anti-virus 16.0.0.614
kaspersky internet_security 16.0.0.614
CVE-2016-6231 MEDIUM

Kaspersky Safe Browser iOS before 1.7.0 does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to obtain sensitive information via a crafted certificate.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
kaspersky safe_browser *
CVE-2017-12816 HIGH

In Kaspersky Internet Security for Android 11.12.4.1622, some of application exports activities have weak permissions, which might be used by a malware application to get unauthorized access to the product functionality by using Android IPC.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-732,

Products Affected

Vendor Product Version
kaspersky internet_security 11.12.4.1622
CVE-2017-12817 MEDIUM

In Kaspersky Internet Security for Android 11.12.4.1622, some of the application trace files were not encrypted.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-311,

Products Affected

Vendor Product Version
kaspersky internet_security 11.12.4.1622
CVE-2017-12823 MEDIUM

Kernel pool memory corruption in one of drivers in Kaspersky Embedded Systems Security version 1.2.0.300 leads to local privilege escalation.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
kaspersky embedded_systems_security 1.2.0.300
kaspersky embedded_systems_security 2.0.0.385
CVE-2017-9810 MEDIUM

There are no Anti-CSRF tokens in any forms on the web interface in Kaspersky Anti-Virus for Linux File Server before Maintenance Pack 2 Critical Fix 4 (version 8.0.4.312). This would allow an attacker to submit authenticated requests when an authenticated user browses an attacker-controlled domain.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
kaspersky anti-virus_for_linux_server *
CVE-2017-9811 HIGH

The kluser is able to interact with the kav4fs-control binary in Kaspersky Anti-Virus for Linux File Server before Maintenance Pack 2 Critical Fix 4 (version 8.0.4.312). By abusing the quarantine read and write operations, it is possible to elevate the privileges to root.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
kaspersky anti-virus_for_linux_server *
CVE-2017-9812 MEDIUM

The reportId parameter of the getReportStatus action method can be abused in the web interface in Kaspersky Anti-Virus for Linux File Server before Maintenance Pack 2 Critical Fix 4 (version 8.0.4.312) to read arbitrary files with kluser privileges.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
kaspersky anti-virus_for_linux_server *
CVE-2017-9813 MEDIUM

In Kaspersky Anti-Virus for Linux File Server before Maintenance Pack 2 Critical Fix 4 (version 8.0.4.312), the scriptName parameter of the licenseKeyInfo action method is vulnerable to cross-site scripting (XSS).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
kaspersky anti-virus_for_linux_server *
CVE-2018-6288 MEDIUM

Cross-site Request Forgery leading to Administrative account takeover in Kaspersky Secure Mail Gateway version 1.1.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
kaspersky secure_mail_gateway 1.1
CVE-2018-6289 HIGH

Configuration file injection leading to Code Execution as Root in Kaspersky Secure Mail Gateway version 1.1.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-74,

Products Affected

Vendor Product Version
kaspersky secure_mail_gateway 1.1
CVE-2018-6290 HIGH

Local Privilege Escalation in Kaspersky Secure Mail Gateway version 1.1.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
kaspersky secure_mail_gateway 1.1
CVE-2018-6291 MEDIUM

WebConsole Cross-Site Scripting in Kaspersky Secure Mail Gateway version 1.1.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
kaspersky secure_mail_gateway 1.1
CVE-2018-6306 MEDIUM

Unauthorized code execution from specific DLL and is known as DLL Hijacking attack in Kaspersky Password Manager versions before 8.0.6.538.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-426,

Products Affected

Vendor Product Version
kaspersky password_manager *
CVE-2019-15684 MEDIUM

Kaspersky Protection extension for web browser Google Chrome prior to 30.112.62.0 was vulnerable to unauthorized access to its features remotely that could lead to removing other installed extensions.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N 2.8 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
google chrome *
kaspersky protection 20.0.543.1418
CVE-2019-15685 MEDIUM

Kaspersky Anti-Virus, Kaspersky Internet Security, Kaspersky Total Security, Kaspersky Free Anti-Virus, Kaspersky Small Office Security, Kaspersky Security Cloud up to 2020, the web protection component allowed an attacker remotely disable such product's security features as private browsing and anti-banner. Bypass.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N 2.8 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
kaspersky small_office_security *
kaspersky internet_security *
kaspersky anti-virus *
kaspersky total_security *
kaspersky security_cloud *
CVE-2019-15686 MEDIUM

Kaspersky Anti-Virus, Kaspersky Internet Security, Kaspersky Total Security, Kaspersky Free Anti-Virus, Kaspersky Small Office Security, Kaspersky Security Cloud up to 2020, the web protection component allowed an attacker remotely disable various anti-virus protection features. DoS, Bypass.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N 2.8 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
kaspersky small_office_security *
kaspersky internet_security *
kaspersky anti-virus *
kaspersky total_security *
kaspersky security_cloud *
CVE-2019-15687 MEDIUM

Kaspersky Anti-Virus, Kaspersky Internet Security, Kaspersky Total Security, Kaspersky Free Anti-Virus, Kaspersky Small Office Security, Kaspersky Security Cloud up to 2020, the web protection component was vulnerable to remote disclosure of various information about the user's system (like Windows version and version of the product, host unique ID). Information Disclosure.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N 2.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
kaspersky small_office_security *
kaspersky internet_security *
kaspersky anti-virus *
kaspersky total_security *
kaspersky security_cloud *
CVE-2019-15688 MEDIUM

Kaspersky Anti-Virus, Kaspersky Internet Security, Kaspersky Total Security, Kaspersky Free Anti-Virus, Kaspersky Small Office Security, Kaspersky Security Cloud up to 2020, the web protection component did not adequately inform the user about the threat of redirecting to an untrusted site. Bypass.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-601,

Products Affected

Vendor Product Version
kaspersky small_office_security *
kaspersky internet_security *
kaspersky anti-virus *
kaspersky total_security *
kaspersky security_cloud *
CVE-2019-15689 MEDIUM

Kaspersky Secure Connection, Kaspersky Internet Security, Kaspersky Total Security, Kaspersky Security Cloud prior to version 2020 patch E have bug that allows a local user to execute arbitrary code via execution compromised file placed by an attacker with administrator rights. No privilege escalation. Possible whitelisting bypass some of the security products

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.7 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 0.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-668,

Products Affected

Vendor Product Version
kaspersky secure_connection 4.0
kaspersky total_security 2020
kaspersky security_cloud 2019
kaspersky security_cloud 2020
kaspersky secure_connection 3.0
kaspersky kaspersky_internet_security 2019
kaspersky total_security 2019
CVE-2019-8285 HIGH

Kaspersky Lab Antivirus Engine version before 04.apr.2019 has a heap-based buffer overflow vulnerability that potentially allow arbitrary code execution

CVSS 2.0

Severity: HIGH

Problem Type: CWE-787,

Products Affected

Vendor Product Version
kaspersky antivirus_engine *
CVE-2019-8286 MEDIUM

Information Disclosure in Kaspersky Anti-Virus, Kaspersky Internet Security, Kaspersky Total Security versions up to 2019 could potentially disclose unique Product ID by forcing victim to visit a specially crafted webpage (for example, via clicking phishing link). Vulnerability has CVSS v3.0 base score 2.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
kaspersky free_anti-virus *
kaspersky small_office_security *
kaspersky internet_security *
kaspersky anti-virus *
kaspersky total_security *
CVE-2020-25043 LOW

The installer of Kaspersky VPN Secure Connection prior to 5.0 was vulnerable to arbitrary file deletion that could allow an attacker to delete any file in the system.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.1 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H 1.8 5.2

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
kaspersky vpn_secure_connection *
CVE-2020-25044 LOW

Kaspersky Virus Removal Tool (KVRT) prior to 15.0.23.0 was vulnerable to arbitrary file corruption that could provide an attacker with the opportunity to eliminate content of any file in the system.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.1 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H 1.8 5.2

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
kaspersky virus_removal_tool *
CVE-2020-25045 MEDIUM

Installers of Kaspersky Security Center and Kaspersky Security Center Web Console prior to 12 & prior to 12 Patch A were vulnerable to a DLL hijacking attack that allowed an attacker to elevate privileges in the system.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-427,

Products Affected

Vendor Product Version
kaspersky security_center_web_console *
kaspersky security_center *
CVE-2020-26200 MEDIUM

A component of Kaspersky custom boot loader allowed loading of untrusted UEFI modules due to insufficient check of their authenticity. This component is incorporated in Kaspersky Rescue Disk (KRD) and was trusted by the Authentication Agent of Full Disk Encryption in Kaspersky Endpoint Security (KES). This issue allowed to bypass the UEFI Secure Boot security feature. An attacker would need physical access to the computer to exploit it. Otherwise, local administrator privileges would be required to modify the boot loader component.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.8 MEDIUM CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 0.9 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
kaspersky endpoint_security 11.1.0
kaspersky endpoint_security 11.0.1
kaspersky rescue_disk *
kaspersky endpoint_security 11.0.0
kaspersky endpoint_security 10
CVE-2020-27020 MEDIUM

Password generator feature in Kaspersky Password Manager was not completely cryptographically strong and potentially allowed an attacker to predict generated passwords in some cases. An attacker would need to know some additional information (for example, time of password generation).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-326,

Products Affected

Vendor Product Version
kaspersky password_manager *
kaspersky password_manager 9.2
CVE-2020-28950 MEDIUM

The installer of Kaspersky Anti-Ransomware Tool (KART) prior to KART 4.0 Patch C was vulnerable to a DLL hijacking attack that allowed an attacker to elevate privileges during installation process.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-427,

Products Affected

Vendor Product Version
kaspersky anti-ransomware_tool *
kaspersky anti-ransomware_tool 4.0
CVE-2020-35929 MEDIUM

In TinyCheck before commits 9fd360d and ea53de8, the installation script of the tool contained hard-coded credentials to the backend part of the tool. This information could be used by an attacker for unauthorized access to remote data.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-798,

Products Affected

Vendor Product Version
kaspersky tinycheck *
CVE-2020-36199 HIGH

TinyCheck before commits 9fd360d and ea53de8 was vulnerable to command injection due to insufficient checks of input parameters in several places.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,CWE-78,

Products Affected

Vendor Product Version
kaspersky tinycheck *
CVE-2020-36200 MEDIUM

TinyCheck before commits 9fd360d and ea53de8 allowed an authenticated attacker to send an HTTP GET request to the crafted URLs.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N 2.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-918,

Products Affected

Vendor Product Version
kaspersky tinycheck *
CVE-2021-26718 LOW

KIS for macOS in some use cases was vulnerable to AV bypass that potentially allowed an attacker to disable anti-virus protection.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-863,

Products Affected

Vendor Product Version
kaspersky internet_security *
CVE-2021-27223 LOW

A denial-of-service issue existed in one of modules that was incorporated in Kaspersky Anti-Virus products for home and Kaspersky Endpoint Security. A local user could cause Windows crash by running a specially crafted binary module. The fix was delivered automatically. Credits: (Straghkov Denis, Kurmangaleev Shamil, Fedotov Andrey, Kuts Daniil, Mishechkin Maxim, Akolzin Vitaliy) @ ISPRAS

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
kaspersky small_office_security *
kaspersky internet_security *
kaspersky anti-virus *
kaspersky endpoint_security *
kaspersky total_security *
kaspersky security_cloud *
CVE-2021-35052 MEDIUM

A component in Kaspersky Password Manager could allow an attacker to elevate a process Integrity level from Medium to High.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-269,

Products Affected

Vendor Product Version
kaspersky password_manager *
kaspersky password_manager 9.0.2
CVE-2021-35053 HIGH

Possible system denial of service in case of arbitrary changing Firefox browser parameters. An attacker could change specific Firefox browser parameters file in a certain way and then reboot the system to make the system unbootable.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
kaspersky endpoint_security *
CVE-2022-27534 HIGH

Kaspersky Anti-Virus products for home and Kaspersky Endpoint Security with antivirus databases released before 12 March 2022 had a bug in a data parsing module that potentially allowed an attacker to execute arbitrary code. The fix was delivered automatically. Credits: Georgy Zaytsev (Positive Technologies).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
kaspersky small_office_security *
kaspersky internet_security *
kaspersky anti-virus *
kaspersky endpoint_security *
kaspersky total_security *
kaspersky security_cloud *
CVE-2022-27535

Kaspersky VPN Secure Connection for Windows version up to 21.5 was vulnerable to arbitrary file deletion via abuse of its 'Delete All Service Data And Reports' feature by the local authenticated attacker.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

Products Affected

Vendor Product Version
kaspersky vpn_secure_connection *
CVE-2024-1619

Kaspersky has fixed a security issue in the Kaspersky Security 8.0 for Linux Mail Server. The issue was that an attacker could potentially force an administrator to click on a malicious link to perform unauthorized actions.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
vulnerability@kaspersky.com 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

Products Affected

Vendor Product Version
kaspersky security *