Kingsoft Antivirus 'KisKrnl.sys' Driver Denial Of Service Vulnerability Network Vulnerability

Summary

This host is installed with Kingsoft Antivirus and is prone to denial of service vulnerability.

Impact

Successful exploitation will allow local users to cause a denial of service condition. Impact Level: Application.

Solution

No solution or patch was made available for at least one year since disclosure of this vulnerability. Likely none will be provided anymore. General solution options are to upgrade to a newer release, disable respective features, remove the product or replace the product by another one.

Insight

The flaw is due to an error when handling system service calls in the 'kisknl.sys' driver which can be exploited to cause a page fault error in the kernel and crash the system.

Affected

Kingsoft Antivirus version 2011.1.13.89 and prior.

References

http://secunia.com/advisories/42937
http://www.exploit-db.com/exploits/15998/
http://xforce.iss.net/xforce/xfdb/64723

Updated on 2015-03-25

Severity

Classification

CVE CVE-2011-0515

CVSS	Base Score: 2.1 AV:L/AC:L/Au:N/C:N/I:N/A:P

Related Vulnerabilities

OpenOffice senddoc Insecure Temporary File Creation Vulnerability (Win)
ISC BIND 9 'RRSIG' Record Type Remote Denial of Service Vulnerability
Oracle VM VirtualBox Local Denial of Service Vulnerability-01 Oct2013 (Linux)
osTicket Support Address DoS
Oracle VM VirtualBox Local Denial of Service Vulnerability-01 Oct2013 (Mac OS X)

Kingsoft Antivirus 'KisKrnl.sys' Driver Denial of Service Vulnerability

Take action and discover your vulnerabilities