Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
kaspersky lab kaspersky anti-virus vulnerabilities and exploits
(subscribe to this query)
685
VMScore
CVE-2017-9810
There are no Anti-CSRF tokens in any forms on the web interface in Kaspersky Anti-Virus for Linux File Server before Maintenance Pack 2 Critical Fix 4 (version 8.0.4.312). This would allow an malicious user to submit authenticated requests when an authenticated user browses an at...
Kaspersky Anti-virus For Linux Server
1 EDB exploit
1 Article
1000
VMScore
CVE-2017-9811
The kluser is able to interact with the kav4fs-control binary in Kaspersky Anti-Virus for Linux File Server before Maintenance Pack 2 Critical Fix 4 (version 8.0.4.312). By abusing the quarantine read and write operations, it is possible to elevate the privileges to root.
Kaspersky Anti-virus For Linux Server
1 EDB exploit
1 Article
505
VMScore
CVE-2017-9812
The reportId parameter of the getReportStatus action method can be abused in the web interface in Kaspersky Anti-Virus for Linux File Server before Maintenance Pack 2 Critical Fix 4 (version 8.0.4.312) to read arbitrary files with kluser privileges.
Kaspersky Anti-virus For Linux Server
1 EDB exploit
1 Article
435
VMScore
CVE-2017-9813
In Kaspersky Anti-Virus for Linux File Server before Maintenance Pack 2 Critical Fix 4 (version 8.0.4.312), the scriptName parameter of the licenseKeyInfo action method is vulnerable to cross-site scripting (XSS).
Kaspersky Anti-virus For Linux Server
1 EDB exploit
1 Article
685
VMScore
CVE-2009-4452
Kaspersky Anti-Virus 5.0 (5.0.712); Antivirus Personal 5.0.x; Anti-Virus 6.0 (6.0.3.837), 7 (7.0.1.325), 2009 (8.0.0.x), and 2010 (9.0.0.463); and Internet Security 7 (7.0.1.325), 2009 (8.0.0.x), and 2010 (9.0.0.463); use weak permissions (Everyone:Full Control) for the BASES dir...
Kaspersky Lab Kaspersky Anti-virus 2010 9.0.0.463
Kaspersky Lab Kaspersky Anti-virus 5.0.712
Kaspersky Lab Kaspersky Internet Security 2010 9.0.0.463
Kaspersky Lab Kaspersky Anti-virus Personal 5.0.228
Kaspersky Lab Kaspersky Anti-virus Personal 5.0.325
Kaspersky Lab Kaspersky Internet Security 7.0.1.325
Kaspersky Lab Kaspersky Internet Security 2009 8.0.0.506
Kaspersky Lab Kaspersky Anti-virus Personal 5.0
Kaspersky Lab Kaspersky Anti-virus Personal 5.0.227
Kaspersky Lab Kaspersky Anti-virus 7.0.1.325
Kaspersky Lab Kaspersky Anti-virus 2009 8.0.0.454
Kaspersky Lab Kaspersky Anti-virus 6.0.3.837
1 EDB exploit
725
VMScore
CVE-2009-0449
Buffer overflow in klim5.sys in Kaspersky Anti-Virus for Workstations 6.0 and Anti-Virus 2008 allows local users to gain privileges via an IOCTL 0x80052110 call.
Kaspersky Lab Kaspersky Anti-virus 6.0
Kaspersky Lab Kaspersky Anti-virus 2008
1 EDB exploit
641
VMScore
CVE-2008-1518
Stack-based buffer overflow in kl1.sys in Kaspersky Anti-Virus 6.0 and 7.0 and Internet Security 6.0 and 7.0 allows local users to gain privileges via an IOCTL 0x800520e8 call.
Kaspersky Lab Kaspersky Anti-virus 7.0
Kaspersky Lab Kaspersky Internet Security 6.0
Kaspersky Lab Kaspersky Internet Security 7.0
Kaspersky Lab Kaspersky Anti-virus 6.0
187
VMScore
CVE-2007-5086
Kaspersky Anti-Virus (KAV) and Internet Security 7.0 build 125 do not properly validate certain parameters to System Service Descriptor Table (SSDT) and Shadow SSDT function handlers, which allows local users to cause a denial of service (crash) via the (1) NtUserSendInput, (2) L...
Kaspersky Lab Kaspersky Anti-virus
Kaspersky Lab Kaspersky Internet Security 7.0 Build125
445
VMScore
CVE-2007-3906
Unspecified vulnerability in Kaspersky Anti-Virus for Check Point FireWall-1 before Critical Fix 1 (5.5.161.0) might allow malicious users to cause a denial of service (kernel hang) via unspecified vectors. NOTE: it is not clear whether there is an attacker role.
Kaspersky Lab Kaspersky Anti-virus 5.5 For Check Point Firewall-
828
VMScore
CVE-2007-1879
The StartUploading function in KL.SysInfo ActiveX control (AxKLSysInfo.dll) in Kaspersky Anti-Virus 6.0 and Internet Security 6.0 before Maintenance Pack 2 build 6.0.2.614 allows remote malicious users to read arbitrary files by triggering an outbound anonymous FTP session that i...
Kaspersky Lab Kaspersky Internet Security
Kaspersky Lab Kaspersky Anti-virus 6.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32976
CVE-2024-33557
CVE-2024-36801
CVE-2024-35654
authentication bypass
CVE-2024-24919
CSRF
code execution
CVE-2024-27348
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »