The NDIS-TDI Hooking Engine, as used in the (1) KLICK (KLICK.SYS) and (2) KLIN (KLIN.SYS) device drivers 2.0.0.281 for in Kaspersky Labs Anti-Virus 6.0.0.303 and other Anti-Virus and Internet Security products, allows local users to execute arbitrary code via crafted Irp structure with invalid addresses in the 0x80052110 IOCTL.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Kaspersky_anti-virus | Kaspersky_lab | 5.0 (including) | 5.0 (including) |
Kaspersky_anti-virus | Kaspersky_lab | 6.0 (including) | 6.0 (including) |
Kaspersky_anti-virus_personal | Kaspersky_lab | 5.0 (including) | 5.0 (including) |
Kaspersky_anti-virus_personal_pro | Kaspersky_lab | 5.0 (including) | 5.0 (including) |
Kaspersky_internet_security | Kaspersky_lab | 6.0-maintenance_pack_2 (including) | 6.0-maintenance_pack_2 (including) |