{"id":1330,"date":"2016-08-29T22:47:55","date_gmt":"2016-08-29T20:47:55","guid":{"rendered":"http:\/\/borncity.com\/win\/?p=1330"},"modified":"2016-08-29T22:48:22","modified_gmt":"2016-08-29T20:48:22","slug":"critical-vulnerabilities-in-kaspersky-internet-security","status":"publish","type":"post","link":"https:\/\/borncity.com\/win\/2016\/08\/29\/critical-vulnerabilities-in-kaspersky-internet-security\/","title":{"rendered":"Critical vulnerabilities in Kaspersky Internet Security"},"content":{"rendered":"<p><img loading=\"lazy\" decoding=\"async\" style=\"float: left; margin: 0px 10px 0px 0px; display: inline\" src=\"http:\/\/www.borncity.com\/blog\/wp-content\/uploads\/2015\/01\/Schutz.jpg\" width=\"40\" align=\"left\" height=\"47\">Four critical vulnerabilities has been reported in Kaspersky Internet Security Version 16.0.0 (and probably in other Kaspersky products). Kaspersky has fixed this vulnerabilities with an update.<\/p>\n<p><!--more--><\/p>\n<p>Security researchers from <a href=\"http:\/\/www.talosintelligence.com\/about\/\" target=\"_blank\">Talos<\/a> (Cisco) has published last Friday <a href=\"http:\/\/blog.talosintel.com\/2016\/08\/vulnerability-spotlight-multiple-dos.html\" target=\"_blank\">this blog post.<\/a> Kaspersky Internet Security Suite version 16.0.0 contains Multiple DOS Issues and also a Kernel Information Leak.<\/p>\n<p>Kaspersky Security Suite hooks into the Windows API via a driver named KLIF. This driver contains in version 10.0.0.1532 one kernel memory leak. A malicious program can send crafted IOCTL calls to be used, to leak kernel memory content to the user space. Three other vulnerabilities are useable to manipulate inaccessible memory content and causes a system crash. <\/p>\n<p>Talos has reported all vulnerabilities to Kaspersky, and the antivirus vender has shipped an update to fix this security flaws in Kaspersky Security Suite version 16.0.0 \u2013 but note, that other \u2013 unnamed \u2013 products may also be affected. (<a href=\"http:\/\/www.zdnet.com\/article\/kaspersky-fixes-antivirus-crash-bug\/\" target=\"_blank\">via<\/a>)<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Four critical vulnerabilities has been reported in Kaspersky Internet Security Version 16.0.0 (and probably in other Kaspersky products). Kaspersky has fixed this vulnerabilities with an update.<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[22,2],"tags":[284,69,195,86],"class_list":["post-1330","post","type-post","status-publish","format-standard","hentry","category-update","category-windows","tag-kaspersky","tag-security","tag-update","tag-vulnerability"],"_links":{"self":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts\/1330","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/comments?post=1330"}],"version-history":[{"count":0,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts\/1330\/revisions"}],"wp:attachment":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/media?parent=1330"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/categories?post=1330"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/tags?post=1330"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}