• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Kaspersky Anti-Virus Library CAB Record Remote Heap Overflow Vulnerability

The Kaspersky Anti-Virus library is prone to a remote heap overflow vulnerability. The vulnerability is exposed during analysis of .CAB files. This issue may potentially affect all Kaspersky products that include the library, including desktop, server, and gateway anti-virus products. This issue only affects Windows releases. Kaspersky Anti-Virus 4.5 releases are not affected by this issue.

Successful exploitation may result in system-level compromise of a computer hosting a vulnerable application.