CVE-2006-4926

Currently unrated

Key Information:

Vendor: kaspersky
Status: Kaspersky Anti-virus Personal Pro; Kaspersky Anti-virus Personal; Kaspersky Anti-virus; Kaspersky Internet Security
Vendor: CVE Published:; 20 October 2006

Summary

The NDIS-TDI Hooking Engine, as used in the (1) KLICK (KLICK.SYS) and (2) KLIN (KLIN.SYS) device drivers 2.0.0.281 for in Kaspersky Labs Anti-Virus 6.0.0.303 and other Anti-Virus and Internet Security products, allows local users to execute arbitrary code via crafted Irp structure with invalid addresses in the 0x80052110 IOCTL.

References

http://www.securityfocus.com/archive/1/449289/100/0/threaded

mailing-listx_refsource_BUGTRAQ

https://exchange.xforce.ibmcloud.com/vulnerabilities/29677

vdb-entryx_refsource_XF

http://www.osvdb.org/29891

vdb-entryx_refsource_OSVDB

Timeline

Vulnerability published
Oct 20, 2006
Vulnerability Reserved
Sep 22, 2006