Kaspersky AntiVirus SysInfo ActiveX Control Arbitrary File Exfiltration Vulnerability

Bugtraq ID: 23325
Class: Design Error
CVE: CVE-2007-1112
Remote: Yes
Local: No
Published: Apr 05 2007 12:00AM
Updated: Apr 09 2007 06:12PM
Credit: Peter Vreugdenhil discovered this issue.
Vulnerable: Kaspersky Internet Security 6.0
Kaspersky Anti-Virus 6.0
Not Vulnerable: Kaspersky Internet Security 6.0.Maintenance Pack
Kaspersky Anti-Virus 6.0.Maintenance Pack


 

Privacy Statement
Copyright 2010, SecurityFocus