|
Kaspersky Products Multiple Vulnerabilities
|
|
Secunia Advisory:
|
SA24778
|
|
|
Release Date:
|
2007-04-05
|
|
Last Update:
|
2007-04-12
|
|
Popularity:
|
14,662 views
|
|
|
Critical:
|
Highly critical
|
|
Impact:
|
Exposure of system information
Exposure of sensitive information
Privilege escalation
DoS
System access
|
|
Where:
|
From remote
|
|
Solution Status:
|
Vendor Patch
|
|
| Software: | Kaspersky Anti-Virus 4.x
Kaspersky Anti-Virus 5.x
Kaspersky Anti-Virus 6.x
Kaspersky Internet Security 6.x
|
|
|
Subscribe:
|
Instant alerts on relevant vulnerabilities 
|
|
| CVE reference: | CVE-2007-0445
CVE-2007-1112
CVE-2007-1879
CVE-2007-1880
CVE-2007-1881
|
|
Description:
Some vulnerabilities have been reported in various Kaspersky products, which can be exploited by malicious, local users to gain escalated privileges and by malicious people to gain knowledge of sensitive information, cause a DoS (Denial of Service), and potentially compromise a user's system.
1) Unsafe methods (e.g. the "StartUploading()" method) in the AxKLSysInfo.dll and AxKLProd60.dll ActiveX controls can be exploited by malicious websites to remove and retrieve arbitrary files from a user's system.
2) An integer overflow error in klif.sys within the hook function for the "_NtSetValueKey()" function can be exploited to cause a heap-based buffer overflow and potentially execute arbitrary code with escalated privileges.
3) An unspecified error in klif.sys can be exploited by malicious, local users to execute arbitrary code with Ring-0 privileges.
4) A boundary error in the arj.ppl module of the OnDemand Scanner can be exploited to cause a heap-based buffer overflow when scanning a specially crafted ARJ archive.
Solution:
Update to version 6.0.2.614 or later.
Kaspersky Anti-Virus for Windows Workstations:
http://www.kaspersky.com/productupdates?chapter=146274385
Kaspersky Anti-Virus for Windows Server:
http://www.kaspersky.com/productupdates?chapter=146274391
Kaspersky Internet Security 6.0:
http://www.kaspersky.com/productupdates?chapter=186437046
Kaspersky Anti-Virus 6.0:
http://www.kaspersky.com/productupdates?chapter=186435857
Provided and/or discovered by:
1) Discovered by Peter Vreugdenhil and reported via iDefense Labs. Discovered by an anonymous person and reported via ZDI.
2) Discovered by an anonymous person and reported via iDefense Labs.
3) Reported by the vendor.
4) Discovered by an anonymous person and reported via ZDI.
Changelog:
2007-04-06: Added CVE references and links to ZDI.
2007-04-12: Added CVE reference.
Original Advisory:
Kaspersky:
http://www.kaspersky.com/technews?id=203038693
http://www.kaspersky.com/technews?id=203038694
iDefense Labs:
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=504
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=505
ZDI:
http://www.zerodayinitiative.com/advisories/ZDI-07-013.html
http://www.zerodayinitiative.com/advisories/ZDI-07-014.html
|
|
|
Track this Secunia Advisory
|
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released.
Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.
|
|
|
About this Secunia Advisory
|
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
|
