← Back

CVE-2007-1880

nvd nist
Published: Apr 6, 2007Modified: Apr 23, 2026

JSON object

Loading...
6.6
Vector
AV:L/AC:M/Au:S/C:C/I:C/A:C
Exploitability: 2.7 / Impact: 10.0
Source: NVD

Description

Integer overflow in the _NtSetValueKey function in klif.sys in Kaspersky Anti-Virus, Anti-Virus for Workstations, Anti-Virus for File Server 6.0, and Internet Security 6.0 before Maintenance Pack 2 build 6.0.2.614 allows context-dependent attackers to execute arbitrary code via a large, unsigned "data size argument," which results in a heap overflow.

Affected (4)

Kaspersky Lab
2 products
Kaspersky Anti Virus
Kaspersky Internet Security
Configuration A
4 vulnerable
Vulnerable SoftwareAffected Versions
Kaspersky Lab
Kaspersky Anti Virus
Up to 6.0
Kaspersky Anti Virus
Up to 6.0
Kaspersky Anti Virus
Version 6.0
Kaspersky Internet Security
Up to 6.0.1.411

References (20)

Source: cve@mitre.org
Vendor Advisory
Source: cve@mitre.org
Vendor Advisory
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.