CVE-2016-4306
 
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
1Exploited in Wild
-Decision
Descriptions
Multiple information leaks exist in various IOCTL handlers of the Kaspersky Internet Security KLDISK driver. Specially crafted IOCTL requests can cause the driver to return out-of-bounds kernel memory, potentially leaking sensitive information such as privileged tokens or kernel memory addresses that may be useful in bypassing kernel mitigations. An unprivileged user can run a program from user-mode to trigger this vulnerability.
Existen múltiples fugas de información en varios manejadores IOCTL del controlador de Kaspersky Internet Security KLDISK. Peticiones IOCTL especialmente manipuladas pueden provocar que el controlador devuelva memoria del kernel fuera de límites, filtrando potencialmente información sensible como tokens privilegiados o direcciones de memoria kernel que podrían ser útiles en la elusión de mitigaciones del kernel. Un usuario no privilegiado puede ejecutar un programa desde el modo de usuario para desencadenar esta vulnerabilidad.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2016-04-27 CVE Reserved
- 2017-01-06 CVE Published
- 2023-03-08 EPSS Updated
- 2024-08-06 CVE Updated
- 2024-08-06 First Exploit
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-200: Exposure of Sensitive Information to an Unauthorized Actor
CAPEC
References (4)
URL | Tag | Source |
---|---|---|
http://securitytracker.com/id/1036702 | Third Party Advisory | |
http://www.securitytracker.com/id/1036702 | Vdb Entry | |
http://www.securitytracker.com/id/1036703 | Vdb Entry |
URL | Date | SRC |
---|---|---|
http://www.talosintelligence.com/reports/TALOS-2016-0168 | 2024-08-06 |
URL | Date | SRC |
---|
URL | Date | SRC |
---|
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Kaspersky Search vendor "Kaspersky" | Total Security Search vendor "Kaspersky" for product "Total Security" | 16.0.0.614 Search vendor "Kaspersky" for product "Total Security" and version "16.0.0.614" | - |
Affected
|