Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
kaspersky vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2019-8286
Information Disclosure in Kaspersky Anti-Virus, Kaspersky Internet Security, Kaspersky Total Security versions up to 2019 could potentially disclose unique Product ID by forcing victim to visit a specially crafted webpage (for example, via clicking phishing link). Vulnerability h...
Kaspersky Total Security
Kaspersky Anti-virus
Kaspersky Internet Security
Kaspersky Free Anti-virus
Kaspersky Small Office Security
694
VMScore
CVE-2006-1091
Kaspersky Antivirus 5.0.5 and 5.5.3 allows remote malicious users to cause a denial of service (CPU and memory consumption) via unknown attack vectors.
Kaspersky Lab Kaspersky Anti-virus 5.5.3
Kaspersky Lab Kaspersky Anti-virus 5.0.5
890
VMScore
CVE-2007-1112
Kaspersky Anti-Virus 6.0 and Internet Security 6.0 exposes unsafe methods in the (a) AXKLPROD60Lib.KAV60Info (AxKLProd60.dll) and (b) AXKLSYSINFOLib.SysInfo (AxKLSysInfo.dll) ActiveX controls, which allows remote malicious users to "download" or delete arbitrary files v...
Kaspersky Lab Kaspersky Anti-virus 6.0
Kaspersky Lab Kaspersky Internet Security 6.0
187
VMScore
CVE-2007-5086
Kaspersky Anti-Virus (KAV) and Internet Security 7.0 build 125 do not properly validate certain parameters to System Service Descriptor Table (SSDT) and Shadow SSDT function handlers, which allows local users to cause a denial of service (crash) via the (1) NtUserSendInput, (2) L...
Kaspersky Lab Kaspersky Anti-virus
Kaspersky Lab Kaspersky Internet Security 7.0 Build125
694
VMScore
CVE-2007-1281
Kaspersky AntiVirus Engine 6.0.1.411 for Windows and 5.5-10 for Linux allows remote malicious users to cause a denial of service (CPU consumption) via a crafted UPX compressed file with a negative offset, which triggers an infinite loop during decompression.
Kaspersky Lab Kaspersky Antivirus Engine 6.0.1.411
Kaspersky Lab Kaspersky Antivirus Engine 5.5.10
445
VMScore
CVE-2007-0125
Kaspersky Labs Antivirus Engine 6.0 for Windows and 5.5-10 for Linux prior to 20070102 enter an infinite loop upon encountering an invalid NumberOfRvaAndSizes value in the Optional Windows Header of a portable executable (PE) file, which allows remote malicious users to cause a d...
Kaspersky Lab Kaspersky Antivirus Engine 6.0
Kaspersky Lab Kaspersky Antivirus Engine 5.5.10
725
VMScore
CVE-2009-0449
Buffer overflow in klim5.sys in Kaspersky Anti-Virus for Workstations 6.0 and Anti-Virus 2008 allows local users to gain privileges via an IOCTL 0x80052110 call.
Kaspersky Lab Kaspersky Anti-virus 2008
Kaspersky Lab Kaspersky Anti-virus 6.0
1 EDB exploit
409
VMScore
CVE-2020-26200
A component of Kaspersky custom boot loader allowed loading of untrusted UEFI modules due to insufficient check of their authenticity. This component is incorporated in Kaspersky Rescue Disk (KRD) and was trusted by the Authentication Agent of Full Disk Encryption in Kaspersky En...
Kaspersky Endpoint Security 11.0.0
Kaspersky Endpoint Security 11.0.1
Kaspersky Endpoint Security 11.1.0
Kaspersky Endpoint Security 10
Kaspersky Rescue Disk
187
VMScore
CVE-2016-4329
A local denial of service vulnerability exists in window broadcast message handling functionality of Kaspersky Anti-Virus software. Sending certain unhandled window messages, an attacker can cause application termination and in the same way bypass KAV self-protection mechanism.
Kaspersky Internet Security 16.0.0.614
Kaspersky Total Security 16.0.0.614
Kaspersky Anti-virus 16.0.0.614
668
VMScore
CVE-2005-3664
Heap-based buffer overflow in Kaspersky Anti-Virus Engine, as used in Kaspersky Personal 5.0.227, Anti-Virus On-Demand Scanner for Linux 5.0.5, and F-Secure Anti-Virus for Linux 4.50 allows remote malicious users to execute arbitrary code via a crafted CHM file.
Kaspersky Lab Kaspersky Anti-virus 5.0.5
Kaspersky Lab Kaspersky Anti-virus Personal 5.0.227
F-secure F-secure Anti-virus 4.50
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2018-25103
CVE-2024-36279
CVE-2024-38457
elevation of privilege
CVE-2024-27801
CVE-2024-30103
NULL pointer dereference
CVE-2024-6057
XML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »