Lucene search

[email protected]CVE-2009-0449

HistoryFeb 10, 2009 - 7:00 a.m.

CVE-2009-0449

2009-02-1007:00:23

CWE-119

[email protected]

web.nvd.nist.gov

cve-2009-0449

buffer overflow

klim5.sys

kaspersky anti-virus

workstations 6.0

anti-virus 2008

privilege escalation

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

7.1 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

46.0%

JSON

Buffer overflow in klim5.sys in Kaspersky Anti-Virus for Workstations 6.0 and Anti-Virus 2008 allows local users to gain privileges via an IOCTL 0x80052110 call.

Affected configurations

NVD

Node

kaspersky_labkaspersky_anti-virusMatch6.0workstations

kaspersky_labkaspersky_anti-virusMatch2008

CPENameOperatorVersion
kaspersky_lab:kaspersky_anti-viruskaspersky lab kaspersky anti-viruseq6.0
kaspersky_lab:kaspersky_anti-viruskaspersky lab kaspersky anti-viruseq2008

CPE	Name	Operator	Version
kaspersky_lab:kaspersky_anti-virus	kaspersky lab kaspersky anti-virus	eq	6.0
kaspersky_lab:kaspersky_anti-virus	kaspersky lab kaspersky anti-virus	eq	2008

References

kartoffel.reversemode.com/downloads/kaspersky_klim5_plugin.zip

secunia.com/advisories/33788

www.reversemode.com/index.php?option=com_content&task=view&id=60&Itemid=1

www.securityfocus.com/archive/1/500606/100/0/threaded

www.securityfocus.com/bid/33561

www.securitytracker.com/id?1021661

www.wintercore.com/advisories/advisory_W020209.html

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

7.1 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

46.0%

JSON

Related for CVE-2009-0449

cvelist1 openvas2 nvd1 prion1