Buffer Overflow in Kaspersky Anti-Virus for Workstations and 2008
CVE-2009-0449

Currently unrated

Key Information:

Vendor: kaspersky
Status: Kaspersky Anti-virus
Vendor: CVE Published:; 10 February 2009

Summary

A buffer overflow vulnerability exists within the klim5.sys driver in Kaspersky Anti-Virus for Workstations 6.0 and Kaspersky Anti-Virus 2008. This flaw allows local users to execute a specially crafted IOCTL request (specifically, IOCTL 0x80052110) to gain elevated privileges on the affected systems. By exploiting this vulnerability, attackers can potentially execute arbitrary code with the privileges of the user running the Kaspersky software, leading to unauthorized access and manipulation of system resources.

References

http://www.reversemode.com/index.php?option=com_content&t...

x_refsource_MISC

http://kartoffel.reversemode.com/downloads/kaspersky_klim...

x_refsource_MISC

http://www.securitytracker.com/id?1021661

vdb-entryx_refsource_SECTRACK

Timeline

Vulnerability published
Feb 10, 2009
Vulnerability Reserved
Feb 5, 2009