Information leak and denial of service vulnerabilities in Kaspersky products

Описание

Multiple serious vulnerabilities have been found in Kaspersky products. Malicious users can exploit these vulnerabilities to cause denial of service or obtain sensitive information.

Below is a complete list of vulnerabilities:

1. Multiple information leaks in different IOCTL handlers of Kaspersky Internet Security KLDISK driver can be exploited locally via a specially designed IOCTL requests to return out-of-bounds kernel memory and possibly obtain sensitive information as a result;
2. Vulnerabilities in syscall filtering functionality of Kaspersky Internet Security KLIF driver can be expoited locally via a specially designed native api call to cause an access violation resulting in a denial of service.

---

Technical details

All vulnerabilities can be exploited only in case machine already contains a malicious program.

Первичный источник обнаружения

• Kaspersky Lab Advisory
  

Связанные продукты

• Kaspersky-Internet-Security
• Kaspersky-Anti-Virus

Список CVE

• CVE-2016-4306
  warning
• CVE-2016-4305
  warning
• CVE-2016-4304
  warning

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com