BleepingComputer.com: Kaspersky Online Scanner Activex Control Code Execution Vulnerability

Jump to content

Page 1 of 1
  • You cannot start a new topic
  • You cannot reply to this topic

Kaspersky Online Scanner Activex Control Code Execution Vulnerability

#1 User is offline   HIPPO1023 

  • Member
  • PipPip
  • Find Topics
  • Group: Members
  • Posts: 84
  • Joined: 19-February 07

Posted 11 October 2007 - 08:09 AM

From Kaspersky Lab : News

Quote

Kaspersky Online Scanner version 5.0.98.0 corrects the high-risk vulnerability KLV07-09 (CVE-2007-3675). Insufficient control of input parameters in the ActiveX component of Kaspersky Online Scanner version 5.0.93.1 and earlier versions could result in a buffer overflow which could potentially enable an attacker to execute malicious code on a user’s computer.


Affected Products
Kaspersky Online Scanner v5.0.93.1 and earlier

Resolution
Upgrade to Kaspersky Online Scanner v5.0.98.0 :
http://www.kaspersky.com/kos/eng/partner/d...kavwebscan.html

Share this topic:


Page 1 of 1
  • You cannot start a new topic
  • You cannot reply to this topic

1 User(s) are reading this topic
0 members, 1 guests, 0 anonymous users