Vulnerabilities in Kaspersky

28 results

CVE-2019-8287—TightVNC code version 1.3.10 contains global buffer overflow in HandleCoRREBBP macro function, which can potentially result code execution. EPSS 19.5%CVE-2019-15683—TurboVNC server code contains stack buffer overflow vulnerability in commit prior to cea98166008301e614e0d36776bf9435a536136e. This could poEPSS 19.4%CVE-2019-15678—TightVNC code version 1.3.10 contains heap buffer overflow in rfbServerCutText handler, which can potentially result code execution.. This aEPSS 13.1%CVE-2019-15679—TightVNC code version 1.3.10 contains heap buffer overflow in InitialiseRFBConnection function, which can potentially result code execution.EPSS 12.8%CVE-2019-15692—TigerVNC version prior to 1.10.1 is vulnerable to heap buffer overflow. Vulnerability could be triggered from CopyRectDecoder due to incorreEPSS 4.8%CVE-2019-15691—TigerVNC version prior to 1.10.1 is vulnerable to stack use-after-return, which occurs due to incorrect usage of stack memory in ZRLEDecoderEPSS 4.7%CVE-2019-15695—TigerVNC version prior to 1.10.1 is vulnerable to stack buffer overflow, which could be triggered from CMsgReader::readSetCursor. This vulneEPSS 4.5%CVE-2019-15694—TigerVNC version prior to 1.10.1 is vulnerable to heap buffer overflow, which could be triggered from DecodeManager::decodeRect. VulnerabiliEPSS 4.5%CVE-2019-15693—TigerVNC version prior to 1.10.1 is vulnerable to heap buffer overflow, which occurs in TightDecoder::FilterGradient. Exploitation of this vEPSS 4.3%CVE-2019-15681—LibVNC commit before d01e1bb4246323ba6fcee3b82ef1faa9b1dac82a contains a memory leak (CWE-655) in VNC server code, which allow an attacker tEPSS 3.3%CVE-2019-15680—TightVNC code version 1.3.10 contains null pointer dereference in HandleZlibBPP function, which results Denial of System (DoS). This attack EPSS 2.8%CVE-2019-8286—Information Disclosure in Kaspersky Anti-Virus, Kaspersky Internet Security, Kaspersky Total Security versions up to 2019 could potentially EPSS 2.7%CVE-2019-15688—Kaspersky Anti-Virus, Kaspersky Internet Security, Kaspersky Total Security, Kaspersky Free Anti-Virus, Kaspersky Small Office Security, KasEPSS 2.2%CVE-2019-15687—Kaspersky Anti-Virus, Kaspersky Internet Security, Kaspersky Total Security, Kaspersky Free Anti-Virus, Kaspersky Small Office Security, KasEPSS 1.2%CVE-2020-35929—In TinyCheck before commits 9fd360d and ea53de8, the installation script of the tool contained hard-coded credentials to the backend part ofEPSS 1.0%CVE-2019-15685—Kaspersky Anti-Virus, Kaspersky Internet Security, Kaspersky Total Security, Kaspersky Free Anti-Virus, Kaspersky Small Office Security, KasEPSS 0.8%CVE-2019-15686—Kaspersky Anti-Virus, Kaspersky Internet Security, Kaspersky Total Security, Kaspersky Free Anti-Virus, Kaspersky Small Office Security, KasEPSS 0.8%CVE-2019-15689—Kaspersky Secure Connection, Kaspersky Internet Security, Kaspersky Total Security, Kaspersky Security Cloud prior to version 2020 patch E hEPSS 0.8%CVE-2016-4306—Multiple information leaks exist in various IOCTL handlers of the Kaspersky Internet Security KLDISK driver. Specially crafted IOCTL requestEPSS 0.7%CVE-2016-4329—A local denial of service vulnerability exists in window broadcast message handling functionality of Kaspersky Anti-Virus software. Sending EPSS 0.6%

← previouspage 1 / 2next →