CVE-2007-5086 — Improper Input Validation in LAB Kaspersky Internet Security

CWE-20 — Improper Input Validation3 documents3 sources

Severity

2.1LOWNVD

CNA4.4

EPSS

0.1%

top 81.10%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Kaspersky LAB Kaspersky Internet Security

Timeline

PublishedSep 26

Latest updateMay 1

Description

Kaspersky Anti-Virus (KAV) and Internet Security 7.0 build 125 do not properly validate certain parameters to System Service Descriptor Table (SSDT) and Shadow SSDT function handlers, which allows local users to cause a denial of service (crash) via the (1) NtUserSendInput, (2) LoadLibraryA, (3) NtOpenProcess, (4) NtOpenThread, (5) NtTerminateProcess, (6) NtUserFindWindowEx, and (7) NtUserBuildHwndList kernel SSDT hooks in kylif.sys; the (8) NtDuplicateObject (DuplicateHandle) kernel SSDT hook; …

CVSS vector

AV:L/AC:L/C:N/I:N/A:PExploitability: 3.9 | Impact: 2.9

Affected Packages1 packages

▶NVDkaspersky_lab/kaspersky_internet_security7.0_build125

🔴Vulnerability Details

GHSA

GHSA-398g-xgm8-h7c4: Kaspersky Anti-Virus (KAV) and Internet Security 7↗2022-05-01

▶

CVEList

CVE-2007-5086: Kaspersky Anti-Virus (KAV) and Internet Security 7↗2007-09-26

▶