Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Heap-based buffer overflow in Kaspersky Anti-Virus Engine, as used in Kaspersky Personal 5.0.227, Anti-Virus On-Demand Scanner for Linux 5.0.5, and F-Secure Anti-Virus for Linux 4.50 allows remote attackers to execute arbitrary code via a crafted CHM file.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Kaspersky杀毒引擎CHM文件解析器远程溢出漏洞
Vulnerability Description
Kaspersky杀毒引擎(KAV)是非常流行的Windows和Linux病毒扫描引擎,广泛的用于各种网络邮件网关和基于主机的杀毒产品中。 KAV引擎的CHM文件解析器中存在漏洞。如果解析了已破坏的CHM文件的话,就可能发生堆溢出,导致远程攻击者以杀毒软件进程的权限执行任意代码。在Microsoft平台上,受影响软件无法执行任意代码,但可导致Kaspersky Anti-Virus无法再扫描任何文件,因此可能允许之后的恶意代码到达目标。
CVSS Information
N/A
Vulnerability Type
N/A