PDA

View Full Version : Kaspersky Products Multiple Vulnerabilities

ronjor
April 5th, 2007, 08:36 AM
{QUOTE-> Critical:Highly critical
Impact: Privilege escalation
DoS
System access
Exposure of sensitive information
Exposure of system information
Where: From remote
Solution Status: Vendor Patch <-QUOTE}Secunia (http://secunia.com/advisories/24778/)
Engelhardt
April 5th, 2007, 09:06 AM
Thanks ronjor ... got it!
Don Pelotas
April 5th, 2007, 09:54 AM
Fixed in version 6.0.2.614 or later.

http://www.kaspersky.com/technews?id=203038694
huntnyc
April 5th, 2007, 09:58 AM
Thanks for that response Don and also to ronjor for his.

Gary
zapjb
April 5th, 2007, 10:10 AM
{QUOTE-> Fixed in version 6.0.2.614 or later.

http://www.kaspersky.com/technews?id=203038694 <-QUOTE}
Sweet. I'm covered. Thanks guys.
solcroft
April 5th, 2007, 10:27 AM
{QUOTE-> Fixed in version 6.0.2.614 or later.

http://www.kaspersky.com/technews?id=203038694 <-QUOTE}
Does this mean that Active Virus Shield and certain language localizations (those which are still not updated to the latest release) are vulnerable?
lodore
April 5th, 2007, 06:17 PM
i have noticed a few people on the kaspersky forums that still use the 303 version should they be adviced to upgrade to 614 or 621 to protect themselfs from those vunrabilitys?
lodore
dw2108
April 6th, 2007, 12:09 AM
For those using Active Shield, I was told that one should remove an out-dated version and redownload a new copy within a few days, because this new copy should be void of the vulnerabilities. I hope that I was told correctly.

Dave HAL
Firecat
April 6th, 2007, 12:48 AM
What happens to KAV clones with regards to these vulnerabilities? ???
dw2108
April 6th, 2007, 01:09 AM
{QUOTE-> What happens to KAV clones with regards to these vulnerabilities? ??? <-QUOTE}
Firecat, you just brought up a most interesting question, at it shall be fun to see what happens!

Dave HAL
rpsgc
April 6th, 2007, 06:23 AM
KAV english version 6.0.2.614
KAV portuguese version 6.0.0.303 not vista compatible and vulnerable

:dry:
Sjoeii
April 6th, 2007, 08:22 AM
.303 probably shows some hotfixes
Firecat
April 9th, 2007, 09:06 PM
{QUOTE-> Firecat, you just brought up a most interesting question, at it shall be fun to see what happens!

Dave HAL <-QUOTE}
I have just confirmed that paid editions of ZoneAlarm 7.0 with Antivirus functionality based on Kaspersky engine should be free of these vulnerabilities as the OS Firewall and Firewall features in ZA should block them, if the vulnerabilities still exist with Kaspersky products. :)

Can't say about other KAV clones just yet though.