Vulnerabilities > CVE-2005-1905 - Privilege Escalation vulnerability in Kaspersky LAB products
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
The klif.sys driver in Kaspersky Labs Anti-Virus 5.0.227, 5.0.228, and 5.0.335 on Windows 2000 allows local users to gain privileges by modifying certain critical code addresses that are later accessed by privileged programs.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 6 |
Exploit-Db
| description | Kaspersky AntiVirus "klif.sys" Privilege Escalation Vulnerability. CVE-2005-1905. Local exploit for windows platform |
| id | EDB-ID:1032 |
| last seen | 2016-01-31 |
| modified | 2005-06-07 |
| published | 2005-06-07 |
| reporter | Ilya Rabinovich |
| source | https://www.exploit-db.com/download/1032/ |
| title | Kaspersky AntiVirus - "klif.sys" Privilege Escalation Vulnerability |
Seebug
| bulletinFamily | exploit |
| description | BUGTRAQ ID: 13878 CVE(CAN) ID: CVE-2005-1905 Kaspersky是一款非常流行的杀毒软件。 Microsoft Windows 2000平台的Kaspersky软件设计上存在漏洞,本地攻击者可能利用此漏洞提升自己的权限。 起因是Kaspersky内核驱动klif.sys没有正确丢弃高权限,攻击者可能利用这个漏洞以系统内核的权限执行任意代码。 Kaspersky Labs Kaspersky Antivirus 5.0.335 Kaspersky Labs Kaspersky Antivirus 5.0.228 Kaspersky Labs Kaspersky Antivirus 5.0.227 Kaspersky Labs -------------- 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本: <a href=http://www.kaspersky.com/ target=_blank>http://www.kaspersky.com/</a> |
| id | SSV:4142 |
| last seen | 2017-11-19 |
| modified | 2008-10-05 |
| published | 2008-10-05 |
| reporter | Root |
| title | Kaspersky杀毒软件klif.sys权限提升漏洞 |