CVE-2001-0789

3 documents3 sources

Severity

10.0CRITICAL

EPSS

2.5%

top 14.76%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Kaspersky Kaspersky Anti-virus

Timeline

PublishedOct 18

Latest updateApr 30

Description

Format string vulnerability in avpkeeper in Kaspersky KAV 3.5.135.2 for Sendmail allows remote attackers to cause a denial of service or possibly execute arbitrary code via a malformed mail message.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages1 packages

▶NVDkaspersky/kaspersky_anti-virus3.5.132.2

Patches

Patch: archives.neohapsis.com ↗Patch: archives.neohapsis.com ↗

🔴Vulnerability Details

GHSA

GHSA-h243-jxv9-h6mp: Format string vulnerability in avpkeeper in Kaspersky KAV 3↗2022-04-30

▶

CVEList

CVE-2001-0789: Format string vulnerability in avpkeeper in Kaspersky KAV 3↗2001-10-12

▶