Family: Windows --> Category: infos
Kaspersky Antivirus IOCTL Local Privilege Escalation Vulnerability Vulnerability Scan
Vulnerability Scan Summary
Checks date of virus signatures
Detailed Explanation for this Vulnerability Test
The remote Windows host contains an application that is prone to a
local privilege escalation issue.
The version of Kaspersky Antivirus installed on the remote host allows
a local attacker to execute arbitrary code with kernel rights by
passing a specially-crafted Irp structure to an IOCTL handler used by
the KLIN and KLICK device drivers. By leveraging this flaw, a local
attacker may be able to gain complete control of the affected system.
See also :
Update the virus signatures after 10/12/2006 and restart the computer.
High / CVSS Base Score : 7.0
Click HERE for more information and discussions on this network vulnerability scan.