KLA10234
Multiple vulnerabilities in Kaspersky products

Multiple critical vulnerabilities have been found in Kaspersky Anti-Virus and Kaspersky Internet Security. Malicious users can exploit these vulnerabilities to execute arbitrary code or read & overwrite local files. Below is a complete list of vulnerabilities

1. An integer overflow can be exploited remotely via a specially designed data size argument;
2. Unknown vectors related to file downloading and uploading can be exploited remotely via specially designed arguments;
3. A buffer overflow can be exploited remotely via specially designed ARJ files.

Kaspersky Anti-Virus version 6.0
Kaspersky Internet Security version 6.0

Update to latest version