Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-1905

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2005-1905
Last Modified 07 Mar 2011 09:23:04
Published 09 Jun 2005 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2005-1905

Summary

The klif.sys driver in Kaspersky Labs Anti-Virus 5.0.227, 5.0.228, and 5.0.335 on Windows 2000 allows local users to gain privileges by modifying certain critical code addresses that are later accessed by privileged programs.

Vulnerable Systems

Application

  • Kaspersky Lab Kaspersky Anti-virus 5.0.227

  • Kaspersky Lab Kaspersky Anti-virus 5.0.228

  • Kaspersky Lab Kaspersky Anti-virus 5.0.335

  • Kaspersky Lab Kaspersky Anti-virus Personal 5.0.227

  • Kaspersky Lab Kaspersky Anti-virus Personal 5.0.228

  • Kaspersky Lab Kaspersky Anti-virus Personal 5.0.325


References

BID - 13878

BUGTRAQ - 20050607 Kaspersky AntiVirus "klif.sys" Privilege Escalation Vulnerability


Last Updated: 27 May 2016 10:40:20