Lucene search

[email protected]CVE-2003-1443

HistoryDec 31, 2003 - 5:00 a.m.

CVE-2003-1443

2003-12-3105:00:00

CWE-20

[email protected]

web.nvd.nist.gov

kaspersky antivirus

kav

virus detection

ms-dos

cve-2003-1443

nvd

7 High

AI Score

Confidence

Low

4.4 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:P/I:P/A:P

0.0004 Low

EPSS

Percentile

5.2%

JSON

Kaspersky Antivirus (KAV) 4.0.9.0 does not detect viruses in files with MS-DOS device names in their filenames, which allows local users to bypass virus protection, as demonstrated using aux.vbs and aux.com.

CPENameOperatorVersion
kaspersky_lab:kaspersky_anti-viruskaspersky lab kaspersky anti-viruseq4.0.9.0

CPE	Name	Operator	Version
kaspersky_lab:kaspersky_anti-virus	kaspersky lab kaspersky anti-virus	eq	4.0.9.0

References

archives.neohapsis.com/archives/bugtraq/2003-02/0130.html

exchange.xforce.ibmcloud.com/vulnerabilities/11292

7 High

AI Score

Confidence

Low

4.4 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:P/I:P/A:P

0.0004 Low

EPSS

Percentile

5.2%

JSON

Related for CVE-2003-1443

cvelist1