Zero-friction vulnerability management platform

Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.

Install Now

Available for macOS, Windows, and Linux

App screenshot

Kaspersky Anti-Virus 2010 'kl1.sys' Driver DoS Vulnerability

Information

Severity

Severity

Medium

Family

Family

Denial of Service

CVSSv2 Base

CVSSv2 Base

4.9

CVSSv2 Vector

CVSSv2 Vector

AV:L/AC:L/Au:N/C:N/I:N/A:C

Solution Type

Solution Type

Vendor Patch

Created

Created

12 years ago

Modified

Modified

3 years ago

Summary

The host is installed with Kaspersky Anti-Virus 2010 and is prone to Denial of Service vulnerability.

Insight

Insight

The flaw is due to NULL pointer dereference in 'kl1.sys' driver via a specially-crafted IOCTL 0x0022c008 call.

Affected Software

Affected Software

Kaspersky Anti-Virus 2010 before 9.0.0.736 on Windows.

Solution

Solution

Update to version 9.0.0.736 or later.

Common Vulnerabilities and Exposures (CVE)