Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
kaspersky lab kaspersky anti-virus vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2017-9810
There are no Anti-CSRF tokens in any forms on the web interface in Kaspersky Anti-Virus for Linux File Server before Maintenance Pack 2 Critical Fix 4 (version 8.0.4.312). This would allow an malicious user to submit authenticated requests when an authenticated user browses an at...
Kaspersky Anti-virus For Linux Server
1 EDB exploit
1 Article
10
CVSSv2
CVE-2017-9811
The kluser is able to interact with the kav4fs-control binary in Kaspersky Anti-Virus for Linux File Server before Maintenance Pack 2 Critical Fix 4 (version 8.0.4.312). By abusing the quarantine read and write operations, it is possible to elevate the privileges to root.
Kaspersky Anti-virus For Linux Server
1 EDB exploit
1 Article
4.3
CVSSv2
CVE-2017-9813
In Kaspersky Anti-Virus for Linux File Server before Maintenance Pack 2 Critical Fix 4 (version 8.0.4.312), the scriptName parameter of the licenseKeyInfo action method is vulnerable to cross-site scripting (XSS).
Kaspersky Anti-virus For Linux Server
1 EDB exploit
1 Article
5
CVSSv2
CVE-2017-9812
The reportId parameter of the getReportStatus action method can be abused in the web interface in Kaspersky Anti-Virus for Linux File Server before Maintenance Pack 2 Critical Fix 4 (version 8.0.4.312) to read arbitrary files with kluser privileges.
Kaspersky Anti-virus For Linux Server
1 EDB exploit
1 Article
6.8
CVSSv2
CVE-2009-4452
Kaspersky Anti-Virus 5.0 (5.0.712); Antivirus Personal 5.0.x; Anti-Virus 6.0 (6.0.3.837), 7 (7.0.1.325), 2009 (8.0.0.x), and 2010 (9.0.0.463); and Internet Security 7 (7.0.1.325), 2009 (8.0.0.x), and 2010 (9.0.0.463); use weak permissions (Everyone:Full Control) for the BASES dir...
Kaspersky Lab Kaspersky Anti-virus 2010 9.0.0.463
Kaspersky Lab Kaspersky Anti-virus 5.0.712
Kaspersky Lab Kaspersky Internet Security 2010 9.0.0.463
Kaspersky Lab Kaspersky Anti-virus Personal 5.0.228
Kaspersky Lab Kaspersky Anti-virus Personal 5.0.325
Kaspersky Lab Kaspersky Internet Security 7.0.1.325
Kaspersky Lab Kaspersky Internet Security 2009 8.0.0.506
Kaspersky Lab Kaspersky Anti-virus Personal 5.0
Kaspersky Lab Kaspersky Anti-virus Personal 5.0.227
Kaspersky Lab Kaspersky Anti-virus 7.0.1.325
Kaspersky Lab Kaspersky Anti-virus 2009 8.0.0.454
Kaspersky Lab Kaspersky Anti-virus 6.0.3.837
1 EDB exploit
7.2
CVSSv2
CVE-2009-0449
Buffer overflow in klim5.sys in Kaspersky Anti-Virus for Workstations 6.0 and Anti-Virus 2008 allows local users to gain privileges via an IOCTL 0x80052110 call.
Kaspersky Lab Kaspersky Anti-virus 6.0
Kaspersky Lab Kaspersky Anti-virus 2008
1 EDB exploit
7.2
CVSSv2
CVE-2008-1518
Stack-based buffer overflow in kl1.sys in Kaspersky Anti-Virus 6.0 and 7.0 and Internet Security 6.0 and 7.0 allows local users to gain privileges via an IOCTL 0x800520e8 call.
Kaspersky Lab Kaspersky Anti-virus 7.0
Kaspersky Lab Kaspersky Internet Security 6.0
Kaspersky Lab Kaspersky Internet Security 7.0
Kaspersky Lab Kaspersky Anti-virus 6.0
2.1
CVSSv2
CVE-2007-5086
Kaspersky Anti-Virus (KAV) and Internet Security 7.0 build 125 do not properly validate certain parameters to System Service Descriptor Table (SSDT) and Shadow SSDT function handlers, which allows local users to cause a denial of service (crash) via the (1) NtUserSendInput, (2) L...
Kaspersky Lab Kaspersky Anti-virus
Kaspersky Lab Kaspersky Internet Security 7.0 Build125
5
CVSSv2
CVE-2007-3906
Unspecified vulnerability in Kaspersky Anti-Virus for Check Point FireWall-1 before Critical Fix 1 (5.5.161.0) might allow malicious users to cause a denial of service (kernel hang) via unspecified vectors. NOTE: it is not clear whether there is an attacker role.
Kaspersky Lab Kaspersky Anti-virus 5.5 For Check Point Firewall-
10
CVSSv2
CVE-2007-0445
Heap-based buffer overflow in the arj.ppl module in the OnDemand Scanner in Kaspersky Anti-Virus, Anti-Virus for Workstations, and Anti-Virus for File Servers 6.0, and Internet Security 6.0 before Maintenance Pack 2 build 6.0.2.614 allows remote malicious users to execute arbitra...
Kaspersky Lab Kaspersky Anti-virus 6.0
Kaspersky Lab Kaspersky Internet Security
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48654
CVE-2024-2757
authentication bypass
CVE-2024-3194
CVE-2024-33640
CVE-2024-21111
dos
insecure direct object reference
CVE-2024-21345
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »