Secunia

Some vulnerabilities have been reported in various Kaspersky products, which can be exploited by malicious, local users to gain escalated privileges and by malicious people to gain knowledge of sensitive information, cause a DoS (Denial of Service), and potentially compromise a user's system.

1) Unsafe methods (e.g. the "StartUploading()" method) in the AxKLSysInfo.dll and AxKLProd60.dll ActiveX controls can be exploited by malicious websites to remove and retrieve arbitrary files from a user's system.

2) An integer overflow error in klif.sys within the hook function for the "_NtSetValueKey()" function can be exploited to cause a heap-based buffer overflow and potentially execute arbitrary code with escalated privileges.

3) An unspecified error in klif.sys can be exploited by malicious, local users to execute arbitrary code with Ring-0 privileges.

4) A boundary error in the arj.ppl module of the OnDemand Scanner can be exploited to cause a heap-based buffer overflow when scanning a specially crafted ARJ archive.

Solution
Update to version 6.0.2.614 or later.
Further details available in Customer Area

Provided and/or discovered by
1) Discovered by Peter Vreugdenhil and reported via iDefense Labs. Discovered by an anonymous person and reported via ZDI.
2) Discovered by an anonymous person and reported via iDefense Labs.
3) Reported by the vendor.
4) Discovered by an anonymous person and reported via ZDI.

Changelog
Further details available in Customer Area

Original Advisory
Kaspersky:
http://www.kaspersky.com/technews?id=203038693
http://www.kaspersky.com/technews?id=203038694

iDefense Labs:
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=504
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=505

ZDI:
http://www.zerodayinitiative.com/advisories/ZDI-07-013.html
http://www.zerodayinitiative.com/advisories/ZDI-07-014.html

Deep Links
Links available in Customer Area