CVE-2009-4452
Summary
| CVE | CVE-2009-4452 |
|---|---|
| State | PUBLISHED |
| Assigner | mitre |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2009-12-29 20:41:20 UTC |
| Updated | 2026-04-23 00:35:47 UTC |
| Description | Kaspersky Anti-Virus 5.0 (5.0.712); Antivirus Personal 5.0.x; Anti-Virus 6.0 (6.0.3.837), 7 (7.0.1.325), 2009 (8.0.0.x), and 2010 (9.0.0.463); and Internet Security 7 (7.0.1.325), 2009 (8.0.0.x), and 2010 (9.0.0.463); use weak permissions (Everyone:Full Control) for the BASES directory, which allows local users to gain SYSTEM privileges by replacing an executable or DLL with a Trojan horse. |
Risk And Classification
CVSS v2.0 Breakdown
Access Vector
LocalAccess Complexity
LowAuthentication
SingleConfidentiality
CompleteIntegrity
CompleteAvailability
CompleteAV:L/AC:L/Au:S/C:C/I:C/A:C
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Kaspersky Lab | Kaspersky Anti-virus | 5.0.712 | All | windows_workstations | All |
| Application | Kaspersky Lab | Kaspersky Anti-virus | 6.0.3.837 | All | windows_file_servers | All |
| Application | Kaspersky Lab | Kaspersky Anti-virus | 6.0.3.837 | All | windows_workstation | All |
| Application | Kaspersky Lab | Kaspersky Anti-virus | 7.0.1.325 | All | All | All |
| Application | Kaspersky Lab | Kaspersky Anti-virus 2009 | 8.0.0.454 | All | All | All |
| Application | Kaspersky Lab | Kaspersky Anti-virus 2010 | 9.0.0.463 | All | All | All |
| Application | Kaspersky Lab | Kaspersky Anti-virus Personal | 5.0 | All | All | All |
| Application | Kaspersky Lab | Kaspersky Anti-virus Personal | 5.0.227 | All | All | All |
| Application | Kaspersky Lab | Kaspersky Anti-virus Personal | 5.0.228 | All | All | All |
| Application | Kaspersky Lab | Kaspersky Anti-virus Personal | 5.0.325 | All | All | All |
| Application | Kaspersky Lab | Kaspersky Internet Security | 7.0.1.325 | All | All | All |
| Application | Kaspersky Lab | Kaspersky Internet Security 2009 | 8.0.0.506 | All | All | All |
| Application | Kaspersky Lab | Kaspersky Internet Security 2010 | 9.0.0.463 | All | All | All |
Vendor Declared Affected Products
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Kaspersky Lab (Multiple Products) - Local Privilege Escalation - Windows local Exploit | af854a3a-2127-422b-91ae-364da2661108 | www.exploit-db.com | Exploit |
| Webmail : Solution de messagerie professionnelle - OVHcloud- OVH | af854a3a-2127-422b-91ae-364da2661108 | www.vupen.com | Vendor Advisory |
| Kaspersky Products Insecure Default Directory Permissions - Secunia Advisories - Vulnerability Information - Secunia.com | af854a3a-2127-422b-91ae-364da2661108 | secunia.com | Vendor Advisory |
| Kaspersky Anti-Virus Unsafe Access Control Configuration for BASES Folder Lets Local Users Gain Elevated Privileges - SecurityTracker | af854a3a-2127-422b-91ae-364da2661108 | www.securitytracker.com | |
| Kaspersky Anti-Virus 2010 Denial of Service and Privilege Escalation - Secunia Advisories - Vulnerability Information - Secunia.com | af854a3a-2127-422b-91ae-364da2661108 | secunia.com | Vendor Advisory |
| Kaspersky Internet Security Unsafe Access Control Configuration for BASES Folder Lets Local Users Gain Elevated Privileges - SecurityTracker | af854a3a-2127-422b-91ae-364da2661108 | www.securitytracker.com | |
| SecurityFocus | af854a3a-2127-422b-91ae-364da2661108 | www.securityfocus.com | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.