18 matches found
The SOC Files: Time to “Sapecar”. Unpacking a new Horabot campaign in Mexico
Introduction In this installment of our SOC Files series, we will walk you through a targeted campaign that our MDR team identified and hunted down a few months ago. It involves a threat known as Horabot , a bundle consisting of an infamous banking Trojan, an email spreader, and a notably complex...
Kaspersky Endpoint Security和Kaspersky Industrial CyberSecurity for Linux Nodes 安全漏洞
Kaspersky Endpoint Security and Kaspersky Industrial CyberSecurity for Linux Nodes are both products of the Swiss company Kaspersky.Kaspersky Endpoint Security is an endpoint protection software. Kaspersky Industrial CyberSecurity for Linux Nodes is an industrial network security software. A...
CVE-2022-27534
Kaspersky Anti-Virus products for home and Kaspersky Endpoint Security with antivirus databases released before 12 March 2022 had a bug in a data parsing module that potentially allowed an attacker to execute arbitrary code. The fix was delivered automatically. Credits: Georgy Zaytsev Positive...
Kaspersky多款产品 安全漏洞
Kaspersky Anti-Virus is a suite of antivirus software, Kaspersky Internet Security is a suite of security software with both anti-virus and firewall features. Internet Security is a suite of antivirus software for Internet security.Kaspersky Anti-Ransomware Tool is a security software that provid...
PT-2024-1793 · Kaspersky · Kaspersky Endpoint Security For Windows
Name of the Vulnerable Software and Affected Versions: Kaspersky Endpoint Security for Windows affected versions not specified Description: The issue is related to insecure privilege management in Kaspersky Endpoint Security for Windows. It may allow a remote attacker to suspend the operation of...
The vulnerability of the installation file of the Kaspersky Endpoint Security antivirus software and the Kavremover utility allows a malicious actor to execute an external executable file from within the installation process.
The vulnerability of the installation file of Kaspersky Endpoint Security and the Kavremover utility is related to an uncontrolled element in the search path. Exploiting this vulnerability could allow a malicious actor to execute an external executable file from within the installation process...
PT-2022-5288 · Kaspersky · Kavremover +1
Name of the Vulnerable Software and Affected Versions: Kaspersky Endpoint Security affected versions not specified Kavremover affected versions not specified Description: The issue is related to an uncontrolled search path element in the installation file of Kaspersky Endpoint Security and the...
PT-2022-5289 · Kaspersky · Kavremover +1
Name of the Vulnerable Software and Affected Versions: Kaspersky Endpoint Security affected versions not specified Kavremover affected versions not specified Description: The issue is related to an uncontrolled search path element in the installation file of Kaspersky Endpoint Security and the...
The vulnerability of the modules related to antivirus protection software, such as Kaspersky Anti-Virus, Kaspersky Internet Security, Kaspersky Total Security, Kaspersky Small Office Security, Kaspersky Security Cloud, and Kaspersky Endpoint Security, is related to vulnerabilities in access control. These vulnerabilities allow attackers to trigger an emergency shutdown of the Microsoft Windows operating system.
The vulnerability of Kaspersky Anti-Virus, Kaspersky Internet Security, Kaspersky Total Security, Kaspersky Small Office Security, Kaspersky Security Cloud, and Kaspersky Endpoint Security modules is related to deficiencies in access control. Exploiting this vulnerability can allow attackers to...
The vulnerability of Kaspersky Endpoint Security’s antivirus protection for Windows involves errors during path restriction for restricted access directories. This allows a malicious user to trigger a service failure when loading the operating system.
The vulnerability of Kaspersky Endpoint Security for Windows relates to errors during path limitation for restricted access directories. Exploiting this vulnerability can allow a malicious actor to cause a service failure when the operating system is loaded...
The vulnerability of the Web Antivirus component of Kaspersky Endpoint Security allows a perpetrator to compromise data integrity.
The vulnerability of the Web Antivirus component of Kaspersky Endpoint Security relates to insufficient checking of file paths for reparse points. Exploiting this vulnerability can allow attackers to compromise data integrity...
The vulnerability of the Kaspersky Endpoint Security anti-virus protection component and the Kaspersky Rescue Disk boot disk, related to insufficient verification of data authenticity, allows attackers to bypass the UEFI Secure Boot security mechanism.
The vulnerability of the Kaspersky Endpoint Security anti-virus protection component and the Kaspersky Rescue Disk boot disk is related to insufficient verification of data authenticity. Exploiting this vulnerability can allow a remote attacker to bypass the UEFI Secure Boot security mechanism...
PT-2021-2011
Name of the Vulnerable Software and Affected Versions: Kaspersky Endpoint Security affected versions not specified Kaspersky Rescue Disk affected versions not specified Description: A component of Kaspersky custom boot loader allowed loading of untrusted UEFI modules due to insufficient check of...
Kaspersky Endpoint Security - Certificates or keys found, Corrupted files, Suspicious files vulnerabilities
HackApp vulnerability scanner discovered that application Kaspersky Endpoint Security published at the 'play' market has multiple vulnerabilities...
Kaspersky Endpoint Security 'avp.exe' Authentication Bypass Vulnerability
Kaspersky Endpoint Security is a suite of security software that provides digital threat protection protection for business users. Kaspersky Endpoint Security suffers from an authentication bypass vulnerability that could be exploited by an attacker to bypass authentication mechanisms and perform...
Kaspersky Endpoint Security for Windows MD5 Local Information Disclosure Vulnerability
Kaspersky Endpoint Security for Windows is a suite of Windows-based security software that provides digital threat protection for business users. A local information disclosure vulnerability exists in Kaspersky Endpoint Security for Windows, which can be exploited by local attackers to obtain...
[SYSS-2015-001] Kaspersky Endpoint Security - Authentication Bypass
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Advisory ID: SYSS-2015-001 Product: Kaspersky Endpoint Security for Windows KES Manufacturer: Kaspersky Lab ZAO Affected Versions: 8.1.0.1042, 10.2.1.23 Tested Versions: 8.1.0.1042, 10.2.1.23 Vulnerability Type: Authentication Bypass Using an...
Kaspersky Endpoint Security For Windows 8.1.0.1042 / 10.2.1.23 Authentication Bypass
By analyzing the password-based authentication for unloading the Kaspersky Endpoint Security for Windows protection, the SySS GmbH found out, that the password comparison is done within the process avp.exe, which runs or can be run in the context of the current Windows user, who can also be a...