Race Condition Vulnerability in Kaspersky Internet Security on Windows
CVE-2010-5163
Currently unrated
What is CVE-2010-5163?
A race condition in Kaspersky Internet Security 2010 on Windows XP permits local users to bypass kernel-mode hook handlers. This vulnerability enables execution of potentially harmful code that is typically blocked by the security handler, by exploiting specific user-space memory changes during the execution of the hook-handler. Known as an argument-switch attack or KHOBE attack, this vulnerability raises significant concerns, particularly as it occurs in the protection mechanisms when malicious code has already begun execution, leading to potential security breaches.