CVE-2007-1880 in Anti-Virusinfo

Summary

Integer overflow in the _NtSetValueKey function in klif.sys in Kaspersky Anti-Virus, Anti-Virus for Workstations, Anti-Virus for File Server 6.0, and Internet Security 6.0 before Maintenance Pack 2 build 6.0.2.614 allows context-dependent attackers to execute arbitrary code via a large, unsigned "data size argument," which results in a heap overflow.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Reservation

04/05/2007

Disclosure

04/05/2007

Moderation

VulDB entry created

Entries

CPE

ready

CWE

CWE-192 (Confirmed)

CVSS

8.8

EPSS

0.00073

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2007-1880
NVD	https://nvd.nist.gov/vuln/detail/CVE-2007-1880
CVE Details	https://www.cvedetails.com/cve/CVE-2007-1880/

◂ Previous Overview Next ▸

Might our Artificial Intelligence support you?

Check our Alexa App!