CVE-2006-3074
Kaspersky Internet Security 6.0 - SSDT Hooks Multiple Local Vulnerabilities
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
1Exploited in Wild
-Decision
Descriptions
klif.sys in Kaspersky Internet Security 6.0 and 7.0, Kaspersky Anti-Virus (KAV) 6.0 and 7.0, KAV 6.0 for Windows Workstations, and KAV 6.0 for Windows Servers does not validate certain parameters to the (1) NtCreateKey, (2) NtCreateProcess, (3) NtCreateProcessEx, (4) NtCreateSection, (5) NtCreateSymbolicLinkObject, (6) NtCreateThread, (7) NtDeleteValueKey, (8) NtLoadKey2, (9) NtOpenKey, (10) NtOpenProcess, (11) NtOpenSection, and (12) NtQueryValueKey hooked system calls, which allows local users to cause a denial of service (reboot) via an invalid parameter, as demonstrated by the ClientId parameter to NtOpenProcess.
klif.sys en Kaspersky Internet Security v6.0 y v7.0, Kaspersky Anti-Virus (KAV) v6.0 y v7.0, KAV v6.0 para Windows Workstations, y KAV v6.0 para Windows Servers no validan de forma adecuada ciertos parámetros de llamadas al sistema "enganchadas" sobre (1) NtCreateKey, (2) NtCreateProcess, (3) NtCreateProcessEx, (4) NtCreateSection, (5) NtCreateSymbolicLinkObject, (6) NtCreateThread, (7) NtDeleteValueKey, (8) NtLoadKey2, (9) NtOpenKey, (10) NtOpenProcess, (11) NtOpenSection, y (12) NtQueryValueKey, lo que permite a usuarios locales provocar una denegación de servicio (reinicio) a través de un parámetro inválido, como se demostró con el parámetro ClientId sobre NtOpenProcess.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2006-06-19 CVE Reserved
- 2006-06-19 CVE Published
- 2007-06-15 First Exploit
- 2024-05-09 EPSS Updated
- 2024-08-07 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer
CAPEC
References (17)
URL | Tag | Source |
---|---|---|
http://uninformed.org/index.cgi?v=4&a=4&p=4 | X_refsource_misc | |
http://uninformed.org/index.cgi?v=4&a=4&p=7 | X_refsource_misc | |
http://www.kaspersky.com/technews?id=203038695 | X_refsource_confirm | |
http://www.matousec.com/info/advisories/Kaspersky-Multiple-insufficient-argument-validation-of-hooked-SSDT-functions.php | X_refsource_misc | |
http://www.rootkit.com/board.php?did=edge726&closed=0&lastx=15 | X_refsource_misc | |
http://www.rootkit.com/newsread.php?newsid=726 | X_refsource_misc | |
http://www.securityfocus.com/archive/1/471453/100/0/threaded | Mailing List | |
http://www.securityfocus.com/bid/18341 | Vdb Entry | |
http://www.securityfocus.com/bid/24491 | Vdb Entry | |
http://www.securitytracker.com/id?1018257 | Vdb Entry | |
https://exchange.xforce.ibmcloud.com/vulnerabilities/27104 | Vdb Entry | |
https://exchange.xforce.ibmcloud.com/vulnerabilities/34875 | Vdb Entry |
URL | Date | SRC |
---|---|---|
https://www.exploit-db.com/exploits/30192 | 2007-06-15 |
URL | Date | SRC |
---|
URL | Date | SRC |
---|---|---|
http://secunia.com/advisories/20629 | 2018-10-18 | |
http://secunia.com/advisories/25603 | 2018-10-18 | |
http://www.vupen.com/english/advisories/2006/2333 | 2018-10-18 | |
http://www.vupen.com/english/advisories/2007/2145 | 2018-10-18 |
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Kaspersky Search vendor "Kaspersky" | Kaspersky Anti-virus Search vendor "Kaspersky" for product "Kaspersky Anti-virus" | 6.0 Search vendor "Kaspersky" for product "Kaspersky Anti-virus" and version "6.0" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | * | - |
Safe
|
Kaspersky Search vendor "Kaspersky" | Kaspersky Anti-virus Search vendor "Kaspersky" for product "Kaspersky Anti-virus" | 6.0 Search vendor "Kaspersky" for product "Kaspersky Anti-virus" and version "6.0" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Server Search vendor "Microsoft" for product "Windows Server" | * | - |
Safe
|
Kaspersky Search vendor "Kaspersky" | Kaspersky Anti-virus Search vendor "Kaspersky" for product "Kaspersky Anti-virus" | 6.0 Search vendor "Kaspersky" for product "Kaspersky Anti-virus" and version "6.0" | - |
Affected
| ||||||
Kaspersky Search vendor "Kaspersky" | Kaspersky Anti-virus Search vendor "Kaspersky" for product "Kaspersky Anti-virus" | 7.0 Search vendor "Kaspersky" for product "Kaspersky Anti-virus" and version "7.0" | - |
Affected
| ||||||
Kaspersky Search vendor "Kaspersky" | Kaspersky Internet Security Search vendor "Kaspersky" for product "Kaspersky Internet Security" | 6.0 Search vendor "Kaspersky" for product "Kaspersky Internet Security" and version "6.0" | - |
Affected
| ||||||
Kaspersky Search vendor "Kaspersky" | Kaspersky Internet Security Search vendor "Kaspersky" for product "Kaspersky Internet Security" | 7.0 Search vendor "Kaspersky" for product "Kaspersky Internet Security" and version "7.0" | - |
Affected
|