First published: Fri Oct 12 2007(Updated: )
Multiple format string vulnerabilities in the kavwebscan.CKAVWebScan ActiveX control (kavwebscan.dll) in Kaspersky Online Scanner before 5.0.98 allow remote attackers to execute arbitrary code via format string specifiers in "various string formatting functions," which trigger heap-based buffer overflows.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Kaspersky Lab Online Scanner | <=5.0.93 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.