Denial of Service Vulnerability in Kaspersky Internet Security KLIF Driver
CVE-2016-4304
5.5MEDIUM
What is CVE-2016-4304?
The Kaspersky Internet Security KLIF driver is susceptible to a denial of service vulnerability stemming from its syscall filtering functionality. A specially designed native API call can lead to an access violation exception in the KLIF kernel driver, causing localized denial of service. This can be exploited by an attacker who runs a program from user-mode to trigger this flaw, potentially disrupting services and affecting system reliability.
Affected Version(s)
Internet Security 16.0.0, KLIF driver version 10.0.0.1532