We confirm that the vulnerability existed in the new version of usa.kaspersky.com/support. We analyzed the log files and found requests with SQL injection.
I bet quite a few people are breathing a sigh of relief:
# We are lucky the hackers proved to be more interested in fame than in causing damage
Edited by Orange Blossom, 20 February 2009 - 01:15 AM.
Add in some context from article linked to. ~ OB