CVE-2015-8579

Currently unrated

Key Information:

Vendor: Kaspersky
Status: Total Security 2015
Vendor: CVE Published:; 16 December 2015

Summary

Kaspersky Total Security 2015 15.0.2.361 allocates memory with Read, Write, Execute (RWX) permissions at predictable addresses when protecting user-mode processes, which allows attackers to bypass the DEP and ASLR protection mechanisms via unspecified vectors.

References

http://breakingmalware.com/vulnerabilities/sedating-watch...

x_refsource_MISC

http://www.securityfocus.com/bid/78815

vdb-entryx_refsource_BID

http://blog.ensilo.com/the-av-vulnerability-that-bypasses...

x_refsource_MISC

Timeline

Vulnerability published
Dec 16, 2015
Vulnerability Reserved
Dec 16, 2015