CVE-2016-4306
Last modified
CVE-2016-4306 is a vulnerability of currently unknown severity. Multiple information leaks exist in various IOCTL handlers of the Kaspersky Internet Security KLDISK driver. Specially crafted IOCTL requests can cause the driver to return out-of-bounds kernel memory, potentially leaking sensitive information such as privileged tokens or kernel memory addresses that may be useful in bypassing kernel mitigations. EPSS estimates a 0.66% chance of exploitation in the next 30 days.
Description
Multiple information leaks exist in various IOCTL handlers of the Kaspersky Internet Security KLDISK driver. Specially crafted IOCTL requests can cause the driver to return out-of-bounds kernel memory, potentially leaking sensitive information such as privileged tokens or kernel memory addresses that may be useful in bypassing kernel mitigations. An unprivileged user can run a program from user-mode to trigger this vulnerability.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Kaspersky | Total Security | 16.0.0.614 |
References
- http://www.talosintelligence.com/reports/TALOS-2016-0168/Exploit, Technical Description, Third Party Advisory, VDB Entry
- http://securitytracker.com/id/1036702Third Party Advisory, VDB Entry
- http://www.talosintelligence.com/reports/TALOS-2016-0168/Exploit, Technical Description, Third Party Advisory, VDB Entry
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2016-4306?
How severe is CVE-2016-4306?
How do I fix CVE-2016-4306?
Are you affected by CVE-2016-4306?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST