Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

kaspersky kaspersky anti-virus 6.0 vulnerabilities and exploits

(subscribe to this query)
7.2
CVSSv2
CVE-2006-4926
The NDIS-TDI Hooking Engine, as used in the (1) KLICK (KLICK.SYS) and (2) KLIN (KLIN.SYS) device drivers 2.0.0.281 for in Kaspersky Labs Anti-Virus 6.0.0.303 and other Anti-Virus and Internet Security products, allows local users to execute arbitrary code via crafted Irp structur...
Kaspersky Lab Kaspersky Internet Security 6.0Kaspersky Lab Kaspersky Anti-virus 6.0Kaspersky Lab Kaspersky Anti-virus Personal 5.0Kaspersky Lab Kaspersky Anti-virus Personal Pro 5.0Kaspersky Lab Kaspersky Anti-virus 5.0
7.2
CVSSv2
CVE-2009-0449
Buffer overflow in klim5.sys in Kaspersky Anti-Virus for Workstations 6.0 and Anti-Virus 2008 allows local users to gain privileges via an IOCTL 0x80052110 call.
Kaspersky Lab Kaspersky Anti-virus 6.0Kaspersky Lab Kaspersky Anti-virus 2008
5
CVSSv2
CVE-2006-3074
klif.sys in Kaspersky Internet Security 6.0 and 7.0, Kaspersky Anti-Virus (KAV) 6.0 and 7.0, KAV 6.0 for Windows Workstations, and KAV 6.0 for Windows Servers does not validate certain parameters to the (1) NtCreateKey, (2) NtCreateProcess, (3) NtCreateProcessEx, (4) NtCreateSect...
Kaspersky Kaspersky Internet Security 6.0Kaspersky Kaspersky Anti-virus 6.0Kaspersky Kaspersky Internet Security 7.0Kaspersky Kaspersky Anti-virus 7.0Kaspersky Kaspersky Anti-virus 6.0
6.8
CVSSv2
CVE-2007-1881
Unspecified vulnerability in KLIF (klif.sys) in Kaspersky Anti-Virus, Anti-Virus for Workstations, and Anti-Virus for File Servers 6.0, and Internet Security 6.0 before Maintenance Pack 2 build 6.0.2.614 allows local users to gain Ring-0 privileges via unspecified vectors.
Kaspersky Lab Kaspersky Anti-virusKaspersky Lab Kaspersky Internet SecurityKaspersky Lab Kaspersky Anti-virus 6.0
6.6
CVSSv2
CVE-2007-1880
Integer overflow in the _NtSetValueKey function in klif.sys in Kaspersky Anti-Virus, Anti-Virus for Workstations, Anti-Virus for File Server 6.0, and Internet Security 6.0 before Maintenance Pack 2 build 6.0.2.614 allows context-dependent malicious users to execute arbitrary code...
Kaspersky Lab Kaspersky Internet SecurityKaspersky Lab Kaspersky Anti-virus 6.0Kaspersky Lab Kaspersky Anti-virus
7.2
CVSSv2
CVE-2008-1518
Stack-based buffer overflow in kl1.sys in Kaspersky Anti-Virus 6.0 and 7.0 and Internet Security 6.0 and 7.0 allows local users to gain privileges via an IOCTL 0x800520e8 call.
Kaspersky Lab Kaspersky Anti-virus 7.0Kaspersky Lab Kaspersky Internet Security 6.0Kaspersky Lab Kaspersky Internet Security 7.0Kaspersky Lab Kaspersky Anti-virus 6.0
6.8
CVSSv2
CVE-2009-4452
Kaspersky Anti-Virus 5.0 (5.0.712); Antivirus Personal 5.0.x; Anti-Virus 6.0 (6.0.3.837), 7 (7.0.1.325), 2009 (8.0.0.x), and 2010 (9.0.0.463); and Internet Security 7 (7.0.1.325), 2009 (8.0.0.x), and 2010 (9.0.0.463); use weak permissions (Everyone:Full Control) for the BASES dir...
Kaspersky Lab Kaspersky Anti-virus 2010 9.0.0.463Kaspersky Lab Kaspersky Anti-virus 5.0.712Kaspersky Lab Kaspersky Internet Security 2010 9.0.0.463Kaspersky Lab Kaspersky Anti-virus Personal 5.0.228Kaspersky Lab Kaspersky Anti-virus Personal 5.0.325Kaspersky Lab Kaspersky Internet Security 7.0.1.325Kaspersky Lab Kaspersky Internet Security 2009 8.0.0.506Kaspersky Lab Kaspersky Anti-virus Personal 5.0Kaspersky Lab Kaspersky Anti-virus Personal 5.0.227Kaspersky Lab Kaspersky Anti-virus 7.0.1.325Kaspersky Lab Kaspersky Anti-virus 2009 8.0.0.454Kaspersky Lab Kaspersky Anti-virus 6.0.3.837
10
CVSSv2
CVE-2007-1112
Kaspersky Anti-Virus 6.0 and Internet Security 6.0 exposes unsafe methods in the (a) AXKLPROD60Lib.KAV60Info (AxKLProd60.dll) and (b) AXKLSYSINFOLib.SysInfo (AxKLSysInfo.dll) ActiveX controls, which allows remote malicious users to "download" or delete arbitrary files v...
Kaspersky Lab Kaspersky Anti-virus 6.0Kaspersky Lab Kaspersky Internet Security 6.0
10
CVSSv2
CVE-2007-0445
Heap-based buffer overflow in the arj.ppl module in the OnDemand Scanner in Kaspersky Anti-Virus, Anti-Virus for Workstations, and Anti-Virus for File Servers 6.0, and Internet Security 6.0 before Maintenance Pack 2 build 6.0.2.614 allows remote malicious users to execute arbitra...
Kaspersky Lab Kaspersky Anti-virus 6.0Kaspersky Lab Kaspersky Internet Security
9.3
CVSSv2
CVE-2007-1879
The StartUploading function in KL.SysInfo ActiveX control (AxKLSysInfo.dll) in Kaspersky Anti-Virus 6.0 and Internet Security 6.0 before Maintenance Pack 2 build 6.0.2.614 allows remote malicious users to read arbitrary files by triggering an outbound anonymous FTP session that i...
Kaspersky Lab Kaspersky Internet SecurityKaspersky Lab Kaspersky Anti-virus 6.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7028memory leaklog injectionCVE-2024-3400CVE-2022-48695CVE-2022-48675CVE-2024-34487CVE-2024-33792spoof
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook