Kaspersky Antivirus Engine ARJ Archive Remote Heap Overflow Vulnerability

Kaspersky Anti-Virus Engine is prone to a remote heap-overflow vulnerability because it fails to perform sufficient boundary checks on user-supplied data before copying it to a buffer.

An attacker could leverage this issue to execute arbitrary code with SYSTEM-level privileges. A successful exploit could result in the complete compromise of affected computers.


 

Privacy Statement
Copyright 2010, SecurityFocus