Information Leak Vulnerability in Kaspersky Internet Security Product
CVE-2016-4306

5.5MEDIUM

Key Information:

Vendor
Kaspersky
Status
Total Security
Vendor
CVE Published:
6 January 2017

Summary

The Kaspersky Internet Security driver contains multiple IOCTL handler vulnerabilities that can lead to information leaks. By sending specially crafted IOCTL requests, an attacker can induce the driver to expose out-of-bounds kernel memory. This memory may reveal sensitive information, such as privileged tokens or kernel memory addresses, which could enable an attacker to circumvent kernel protections. Critically, this vulnerability can be exploited by an unprivileged user running a program in user-mode, making it a serious security concern that requires prompt attention.

Affected Version(s)

Total Security 16.0.0.614

References

http://www.securitytracker.com/id/1036702
vdb-entryx_refsource_SECTRACK
http://www.talosintelligence.com/reports/TALOS-2016-0168/
x_refsource_MISC
http://www.securitytracker.com/id/1036703
vdb-entryx_refsource_SECTRACK

CVSS V3.1

Score:
5.5
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.