Vulnerability Details CVE-2016-4329
A local denial of service vulnerability exists in window broadcast message handling functionality of Kaspersky Anti-Virus software. Sending certain unhandled window messages, an attacker can cause application termination and in the same way bypass KAV self-protection mechanism.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 16.7%
CVSS Severity
CVSS v3 Score 5.5
CVSS v2 Score 2.1
References
- http://www.securityfocus.com/bid/92771
- http://www.talosintelligence.com/reports/TALOS-2016-0175/
- http://www.securityfocus.com/bid/92771/info
- https://support.kaspersky.com/vulnerability.aspx?el=12430#010916
- http://www.securityfocus.com/bid/92771
- http://www.talosintelligence.com/reports/TALOS-2016-0175/
Products affected by CVE-2016-4329
-
cpe:2.3:a:kaspersky:anti-virus:16.0.0.614
-
cpe:2.3:a:kaspersky:internet_security:16.0.0.614
-
cpe:2.3:a:kaspersky:total_security:16.0.0.614