GCVE - cpe:2.3:a:kaspersky_lab:kaspersky_anti-virus

Approved changes feed: RSS · Atom

cpe:2.3:a:kaspersky_lab:kaspersky_anti-virus_personal:5.0:*:*:*:*:*:*:*

part: a version: 5.0 update: *

Vendor	Kaspersky Lab (`b5f4462b-8575-5828-a714-cab051c30fb5`)
Product	Kaspersky Anti Virus Personal (`1d56a84d-c141-5a60-9c7e-2367c1d9c6b8`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2009-4452`	vulnerable	2026-06-03 14:29:57.801485	Details available Kaspersky Anti-Virus 5.0 (5.0.712); Antivirus Personal 5.0.x; Anti-Virus 6.0 (6.0.3.837), 7 (7.0.1.325), 2009 (8.0.0.x), and 2010 (9.0.0.463); and Internet Security 7 (7.0.1.325), 2009 (8.0.0.x), and 2010 (9.0.0.463); use weak permissions (Everyone:Full Control) for the BASES directory, which allows local users to gain SYSTEM privileges by replacing an executable or DLL with a Trojan horse. Published: 2009-12-29T20:15:00.000Z Updated: 2024-08-07T07:01:20.350Z Open on db.gcve.eu Reference links http://www.vupen.com/english/advisories/2009/3573 http://www.securitytracker.com/id?1023366 http://secunia.com/advisories/37730 http://www.securityfocus.com/archive/1/508508/100/0/threaded http://www.exploit-db.com/exploits/10484	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2006-4926`	vulnerable	2026-06-03 14:27:44.389714	Details available The NDIS-TDI Hooking Engine, as used in the (1) KLICK (KLICK.SYS) and (2) KLIN (KLIN.SYS) device drivers 2.0.0.281 for in Kaspersky Labs Anti-Virus 6.0.0.303 and other Anti-Virus and Internet Security products, allows local users to execute arbitrary code via crafted Irp structure with invalid addresses in the 0x80052110 IOCTL. Published: 2006-10-20T22:00:00.000Z Updated: 2024-08-07T19:32:22.423Z Open on db.gcve.eu Reference links http://www.securityfocus.com/archive/1/449289/100/0/threaded https://exchange.xforce.ibmcloud.com/vulnerabilities/29677 http://www.osvdb.org/29891 http://www.securityfocus.com/archive/1/449301/100/0/threaded http://www.kaspersky.com/technews?id=203038678	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2005-3142`	vulnerable	2026-06-03 14:27:08.834282	Details available Heap-based buffer overflow in Kaspersky Antivirus (KAV) 5.0 and Kaspersky Personal Security Suite 1.1 allows remote attackers to execute arbitrary code via a CAB file with large records after the header. Published: 2005-10-05T04:00:00.000Z Updated: 2024-08-07T23:01:57.912Z Open on db.gcve.eu Reference links http://www.vupen.com/english/advisories/2005/1934 http://marc.info/?l=bugtraq&m=112837961522571&w=2 http://securityreason.com/securityalert/44 http://www.securityfocus.com/bid/14998 http://secunia.com/advisories/17024/	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.

Kaspersky Anti Virus Personal

PURL mappings

Vulnerability references

Contribute