CVE-2007-1879

2007-04-06T00:19:00
ID CVE-2007-1879
Type cve
Reporter cve@mitre.org
Modified 2017-07-29T01:31:00

Description

The StartUploading function in KL.SysInfo ActiveX control (AxKLSysInfo.dll) in Kaspersky Anti-Virus 6.0 and Internet Security 6.0 before Maintenance Pack 2 build 6.0.2.614 allows remote attackers to read arbitrary files by triggering an outbound anonymous FTP session that invokes the PUT command. NOTE: this issue might be related to CVE-2007-1112.