Kaspersky Multiple Products kl1.sys Driver Local Overflow
High Nessus Plugin ID 33094
SynopsisThe remote Windows host contains an application that is prone to a buffer overflow vulnerability.
DescriptionThe version of the Kaspersky product installed on the remote host contains a stack-based overflow in its 'kl1.sys' kernel driver involving its handling of IOCTL 0x800520e8. A local attacker may be able to leverage this issue to gain complete control of the affected system.
SolutionUpdate the virus signatures after 06/03/2008 and restart the computer.