Peter Sunde, one of four cofounders of notorious BitTorrent search site The Pirate Bay, says he plans to run in next year's European Parliament elections, despite his impending incarceration for... read more
Featured Slideshow
Researcher Discovers Memory Corruption Vulnerability in Kaspersky 2011/2012 Products
Submitted by Benjamin Kunz on Tue, 2011-12-20 15:36
The vulnerability researcher Benjamin Kunz Mejri discovered a new zero-day memory corruption vulnerability in "Kaspersky Anti-Virus 2011/2012 & Internet Security 2011/2012".
The security vulnerability is locally exploKtable while loading a manipulated .CFG (Configuration/Setting) File. The vulnerability is caused by an invalid pointer corruption through the Kaspersky exception/protection filters, which could be exploited by attackers to crash the software process on all instances (Browser+Addon, Sidebar & Software). Benjamin K.M. used a new concept to identify the memory corruption issue and has bypassed the protection filter exception (import) of the software.
Affected Version(s):
Kaspersky Anti-Virus 2012 & Kaspersky Internet Security 2012
- KIS 2012 v12.0.0.374
- KAV 2012 v12.x
Kaspersky Anti-Virus 2011 & Kaspersky Internet Security 2011
- KIS 2011 v11.0.0.232 (a.b)
- KAV 11.0.0.400
- KIS 2011 v12.0.0.374
Kaspersky Anti-Virus 2010 & Kaspersky Internet Security 2010
PoC Video: http://www.vulnerability-lab.com/get_content.php?id=19
You May Also Like
Mon, 2013-05-13 01:31
Wed, 2013-03-13 08:21- Thu, 2013-02-21 06:06