漏洞类别:Local
漏洞等级: 
漏洞信息
Antivirus and Internet Security software for home or business.
Several vulnerabilities were reported in Kaspersky Internet Security and Anti-virus. A local user can cause denial of service conditions on the target system. A local user can obtain potentially sensitive information from system memory.
Affected Version
Kaspersky Internet Security 2016 (16.0.0.614)
Kaspersky Anti-Virus 2016 (16.0.0.614)
Kaspersky Total Security 2016 (16.0.0.614)
漏洞危害
A local user can issue a specially crafted call to trigger an access violation and cause denial of service conditions on the target system [CVE-2016-4304, CVE-2016-4305, CVE-2016-4307].
A local user can issue a specially crafted call to obtain potentially sensitive information from system memory on the target system [CVE-2016-4306].
解决方案
The vendor has issued a fix (2017 (17.0.0.611)). Download latest version from here Kaspersky Lab
Patch:
Following are links for downloading patches to fix the vulnerabilities:
0day
文章评论