Vulnerability Name: | CVE-2009-0449 (CCN-48438) | ||||||||
Assigned: | 2009-02-02 | ||||||||
Published: | 2009-02-02 | ||||||||
Updated: | 2018-10-11 | ||||||||
Summary: | Buffer overflow in klim5.sys in Kaspersky Anti-Virus for Workstations 6.0 and Anti-Virus 2008 allows local users to gain privileges via an IOCTL 0x80052110 call. | ||||||||
CVSS v3 Severity: | 9.3 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)
| ||||||||
CVSS v2 Severity: | 7.2 High (CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C) 6.5 Medium (Temporal CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C/E:F/RL:U/RC:UR)
6.2 Medium (CCN Temporal CVSS v2 Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C/E:F/RL:U/RC:UR)
| ||||||||
Vulnerability Type: | CWE-119 | ||||||||
Vulnerability Consequences: | Gain Privileges | ||||||||
References: | Source: CCN Type: BugTraq Mailing List, Mon Feb 02 2009 - 10:47:20 CST [Wintercore Research WS02-0209] Kaspersky Products Klim5.sys local privilege escalation Source: MITRE Type: CNA CVE-2009-0449 Source: MISC Type: UNKNOWN http://kartoffel.reversemode.com/downloads/kaspersky_klim5_plugin.zip Source: CCN Type: SA33788 Kaspersky Products klim5.sys Privilege Escalation Vulnerability Source: SECUNIA Type: Vendor Advisory 33788 Source: CCN Type: SECTRACK ID: 1021661 Kaspersky Anti-Virus Buffer Overflow in 'Klim5.sys' Lets Local Users Gain Elevated Privileges Source: CCN Type: Kaspersky Lab Web site Antivirus Software: Kaspersky Lab - Protection Against Malware and Cybercrime Source: CCN Type: OSVDB ID: 51726 Kaspersky Multiple Products klim5.sys IOCTL Handling Local Privilege Escalation Source: MISC Type: UNKNOWN http://www.reversemode.com/index.php?option=com_content&task=view&id=60&Itemid=1 Source: BUGTRAQ Type: UNKNOWN 20090202 [Wintercore Research WS02-0209] Kaspersky Products Klim5.sys local privilege escalation Source: BID Type: Exploit 33561 Source: CCN Type: BID-33561 Multiple Kaspersky Products 'klim5.sys' Local Privilege Escalation Vulnerability Source: SECTRACK Type: UNKNOWN 1021661 Source: MISC Type: UNKNOWN http://www.wintercore.com/advisories/advisory_W020209.html Source: XF Type: UNKNOWN kaspersky-av-klim5-code-execution(48438) | ||||||||
Vulnerable Configuration: | Configuration 1: Denotes that component is vulnerable | ||||||||
BACK |