Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
kaspersky vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2019-8286
Information Disclosure in Kaspersky Anti-Virus, Kaspersky Internet Security, Kaspersky Total Security versions up to 2019 could potentially disclose unique Product ID by forcing victim to visit a specially crafted webpage (for example, via clicking phishing link). Vulnerability h...
Kaspersky Total Security
Kaspersky Anti-virus
Kaspersky Internet Security
Kaspersky Free Anti-virus
Kaspersky Small Office Security
7.8
CVSSv2
CVE-2007-1281
Kaspersky AntiVirus Engine 6.0.1.411 for Windows and 5.5-10 for Linux allows remote malicious users to cause a denial of service (CPU consumption) via a crafted UPX compressed file with a negative offset, which triggers an infinite loop during decompression.
Kaspersky Lab Kaspersky Antivirus Engine 6.0.1.411
Kaspersky Lab Kaspersky Antivirus Engine 5.5.10
10
CVSSv2
CVE-2007-1112
Kaspersky Anti-Virus 6.0 and Internet Security 6.0 exposes unsafe methods in the (a) AXKLPROD60Lib.KAV60Info (AxKLProd60.dll) and (b) AXKLSYSINFOLib.SysInfo (AxKLSysInfo.dll) ActiveX controls, which allows remote malicious users to "download" or delete arbitrary files v...
Kaspersky Lab Kaspersky Anti-virus 6.0
Kaspersky Lab Kaspersky Internet Security 6.0
2.1
CVSSv2
CVE-2007-5086
Kaspersky Anti-Virus (KAV) and Internet Security 7.0 build 125 do not properly validate certain parameters to System Service Descriptor Table (SSDT) and Shadow SSDT function handlers, which allows local users to cause a denial of service (crash) via the (1) NtUserSendInput, (2) L...
Kaspersky Lab Kaspersky Anti-virus
Kaspersky Lab Kaspersky Internet Security 7.0 Build125
7.2
CVSSv2
CVE-2009-0449
Buffer overflow in klim5.sys in Kaspersky Anti-Virus for Workstations 6.0 and Anti-Virus 2008 allows local users to gain privileges via an IOCTL 0x80052110 call.
Kaspersky Lab Kaspersky Anti-virus 2008
Kaspersky Lab Kaspersky Anti-virus 6.0
1 EDB exploit
7.8
CVSSv2
CVE-2006-1091
Kaspersky Antivirus 5.0.5 and 5.5.3 allows remote malicious users to cause a denial of service (CPU and memory consumption) via unknown attack vectors.
Kaspersky Lab Kaspersky Anti-virus 5.5.3
Kaspersky Lab Kaspersky Anti-virus 5.0.5
5
CVSSv2
CVE-2007-0125
Kaspersky Labs Antivirus Engine 6.0 for Windows and 5.5-10 for Linux prior to 20070102 enter an infinite loop upon encountering an invalid NumberOfRvaAndSizes value in the Optional Windows Header of a portable executable (PE) file, which allows remote malicious users to cause a d...
Kaspersky Lab Kaspersky Antivirus Engine 6.0
Kaspersky Lab Kaspersky Antivirus Engine 5.5.10
4.6
CVSSv2
CVE-2020-26200
A component of Kaspersky custom boot loader allowed loading of untrusted UEFI modules due to insufficient check of their authenticity. This component is incorporated in Kaspersky Rescue Disk (KRD) and was trusted by the Authentication Agent of Full Disk Encryption in Kaspersky En...
Kaspersky Endpoint Security 11.0.0
Kaspersky Endpoint Security 11.0.1
Kaspersky Endpoint Security 11.1.0
Kaspersky Endpoint Security 10
Kaspersky Rescue Disk
2.1
CVSSv2
CVE-2016-4329
A local denial of service vulnerability exists in window broadcast message handling functionality of Kaspersky Anti-Virus software. Sending certain unhandled window messages, an attacker can cause application termination and in the same way bypass KAV self-protection mechanism.
Kaspersky Internet Security 16.0.0.614
Kaspersky Total Security 16.0.0.614
Kaspersky Anti-virus 16.0.0.614
7.5
CVSSv2
CVE-2005-3664
Heap-based buffer overflow in Kaspersky Anti-Virus Engine, as used in Kaspersky Personal 5.0.227, Anti-Virus On-Demand Scanner for Linux 5.0.5, and F-Secure Anti-Virus for Linux 4.50 allows remote malicious users to execute arbitrary code via a crafted CHM file.
Kaspersky Lab Kaspersky Anti-virus 5.0.5
Kaspersky Lab Kaspersky Anti-virus Personal 5.0.227
F-secure F-secure Anti-virus 4.50
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
buffer overflow
type confusion
server-side request forgery
CVE-2024-38440
CVE-2024-27801
CVE-2024-5868
CVE-2024-0582
CVE-2024-37643
CVE-2024-3105
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »