Race Condition Vulnerability in Kaspersky Internet Security on Windows
CVE-2010-5163

Currently unrated

Key Information:

Vendor: Kaspersky
Status: Kaspersky Internet Security 2010
Vendor: CVE Published:; 25 August 2012

Summary

A race condition in Kaspersky Internet Security 2010 on Windows XP permits local users to bypass kernel-mode hook handlers. This vulnerability enables execution of potentially harmful code that is typically blocked by the security handler, by exploiting specific user-space memory changes during the execution of the hook-handler. Known as an argument-switch attack or KHOBE attack, this vulnerability raises significant concerns, particularly as it occurs in the protection mechanisms when malicious code has already begun execution, leading to potential security breaches.

References

http://archives.neohapsis.com/archives/bugtraq/2010-05/00...

mailing-listx_refsource_BUGTRAQ

http://countermeasures.trendmicro.eu/you-just-cant-trust-...

x_refsource_MISC

http://www.securityfocus.com/bid/39924

vdb-entryx_refsource_BID

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Aug 25, 2012