cbcvebase.
CVE-2009-4452
published 2009-12-29

CVE-2009-4452: Kaspersky Anti-Virus 5.0 (5.0.712); Antivirus Personal 5.0.x; Anti-Virus 6.0 (6.0.3.837), 7 (7.0.1.325), 2009 (8.0.0.x), and 2010 (9.0.0.463); and Internet…

PriorityP426medium6.8CVSS 2.0
AVLACLAuSCCICAC
EXPLOIT
EPSS
0.82%
52.7th percentile
Kaspersky Anti-Virus 5.0 (5.0.712); Antivirus Personal 5.0.x; Anti-Virus 6.0 (6.0.3.837), 7 (7.0.1.325), 2009 (8.0.0.x), and 2010 (9.0.0.463); and Internet Security 7 (7.0.1.325), 2009 (8.0.0.x), and 2010 (9.0.0.463); use weak permissions (Everyone:Full Control) for the BASES directory, which allows local users to gain SYSTEM privileges by replacing an executable or DLL with a Trojan horse.

Affected

12 ranges
VendorProductVersion rangeFixed in
kaspersky_labkaspersky_anti-virus
kaspersky_labkaspersky_anti-virus
kaspersky_labkaspersky_anti-virus
kaspersky_labkaspersky_anti-virus_2009
kaspersky_labkaspersky_anti-virus_2010
kaspersky_labkaspersky_anti-virus_personal
kaspersky_labkaspersky_anti-virus_personal
kaspersky_labkaspersky_anti-virus_personal
kaspersky_labkaspersky_anti-virus_personal
kaspersky_labkaspersky_internet_security
kaspersky_labkaspersky_internet_security_2009
kaspersky_labkaspersky_internet_security_2010

CVSS provenance

nvdv2.06.8MEDIUMAV:L/AC:L/Au:S/C:C/I:C/A:C
vendor_redhat4.4MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.