|
Kaspersky Online Scanner KAVWebScan.DLL ActiveX Control Format String Vulnerability
The Kaspersky Online Scanner ActiveX control is prone to a remote format-string vulnerability because it fails to properly sanitize user-supplied data that contains format specifiers. A successful attack will allow the attacker to execute arbitrary code in the context of an application using the control (typically Internet Explorer). Kaspersky Online Scanner 5.0.93.1 and prior versions are vulnerable. |
|
 Privacy Statement |
