Kaspersky LabKLA10268KLA10268 Multiple vulnerabilities in ESET NOD32
7.6 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:H/Au:N/C:C/I:C/A:C
8.2 High
AI Score
Confidence
High
0.034 Low
EPSS
Percentile
91.5%
Multiple serious vulnerabilities have been found in ESET NOD32. Malicious users can exploit these vulnerabilities to cause denial of service or execute arbitrary code. Below is a complete list of vulnerabilities
- Division by zero can be exploited remotely via a specially designed packet
- An infinite loop can be exploited remotely via a specially designed packet;
- Race conditions can be exploited remotely via a specially designed CAB file.
Original advisories
Related products
CVE list
CVE-2007-3970 critical
Solution
Update to latest version
Impacts
- ACE
Arbitrary code execution. Exploitation of vulnerabilities with this impact can lead to executing by abuser any code or commands at vulnerable machine or process.
- DoS
Denial of service. Exploitation of vulnerabilities with this impact can lead to loss of system availability or critical functional fault.
Affected Products
- ESET NOD32 versions 2.2288 and earlier
Related
7.6 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:H/Au:N/C:C/I:C/A:C
8.2 High
AI Score
Confidence
High
0.034 Low
EPSS
Percentile
91.5%