Vulnerabilities > CVE-2007-1879 - Unspecified vulnerability in Kaspersky LAB Kaspersky Anti-Virus and Kaspersky Internet Security

047910
CVSS 0.0 - NONE
Attack vector
UNKNOWN
Attack complexity
UNKNOWN
Privileges required
UNKNOWN
Confidentiality impact
UNKNOWN
Integrity impact
UNKNOWN
Availability impact
UNKNOWN
kaspersky-lab
nessus
NVD
Published: 2007-04-06
Updated: 2024-11-21

Summary

The StartUploading function in KL.SysInfo ActiveX control (AxKLSysInfo.dll) in Kaspersky Anti-Virus 6.0 and Internet Security 6.0 before Maintenance Pack 2 build 6.0.2.614 allows remote attackers to read arbitrary files by triggering an outbound anonymous FTP session that invokes the PUT command. NOTE: this issue might be related to CVE-2007-1112.

Vulnerable Configurations

Part Description Count
Application
Kaspersky_Lab
2

Nessus

NASL familyWindows
NASL idKASPERSKY_AV6_MULT_VULNS.NASL
descriptionThe version of the Kaspersky antivirus product installed on the remote host may be affected by buffer overflow, privilege escalation, and information disclosure vulnerabilities, depending on the actual product installed.
last seen2020-06-01
modified2020-06-02
plugin id25021
published2007-04-10
reporterThis script is Copyright (C) 2007-2018 Tenable Network Security, Inc.
sourcehttps://www.tenable.com/plugins/nessus/25021
titleKaspersky Anti-Virus < 6.0.2.614 Multiple Vulnerabilities

References