CVE-2009-4452

Summary

CVE	CVE-2009-4452
State	PUBLIC
Assigner	[email protected]
Source Priority	CVE Program / NVD first with legacy fallback
Published	2009-12-29 20:41:00 UTC
Updated	2018-10-10 19:49:00 UTC
Description	Kaspersky Anti-Virus 5.0 (5.0.712); Antivirus Personal 5.0.x; Anti-Virus 6.0 (6.0.3.837), 7 (7.0.1.325), 2009 (8.0.0.x), and 2010 (9.0.0.463); and Internet Security 7 (7.0.1.325), 2009 (8.0.0.x), and 2010 (9.0.0.463); use weak permissions (Everyone:Full Control) for the BASES directory, which allows local users to gain SYSTEM privileges by replacing an executable or DLL with a Trojan horse.

Risk And Classification

Problem Types: CWE-264

NVD Known Affected Configurations (CPE 2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Application	Kaspersky Lab	Kaspersky Anti-virus	5.0.712	All	windows_workstations	All
Application	Kaspersky Lab	Kaspersky Anti-virus	6.0.3.837	All	windows_file_servers	All
Application	Kaspersky Lab	Kaspersky Anti-virus	6.0.3.837	All	windows_workstation	All
Application	Kaspersky Lab	Kaspersky Anti-virus	7.0.1.325	All	All	All
Application	Kaspersky Lab	Kaspersky Anti-virus	5.0.712	All	windows_workstations	All
Application	Kaspersky Lab	Kaspersky Anti-virus	6.0.3.837	All	windows_file_servers	All
Application	Kaspersky Lab	Kaspersky Anti-virus	6.0.3.837	All	windows_workstation	All
Application	Kaspersky Lab	Kaspersky Anti-virus	7.0.1.325	All	All	All
Application	Kaspersky Lab	Kaspersky Anti-virus 2009	8.0.0.454	All	All	All
Application	Kaspersky Lab	Kaspersky Anti-virus 2009	8.0.0.454	All	All	All
Application	Kaspersky Lab	Kaspersky Anti-virus 2010	9.0.0.463	All	All	All
Application	Kaspersky Lab	Kaspersky Anti-virus 2010	9.0.0.463	All	All	All
Application	Kaspersky Lab	Kaspersky Anti-virus Personal	5.0	All	All	All
Application	Kaspersky Lab	Kaspersky Anti-virus Personal	5.0.227	All	All	All
Application	Kaspersky Lab	Kaspersky Anti-virus Personal	5.0.228	All	All	All
Application	Kaspersky Lab	Kaspersky Anti-virus Personal	5.0.325	All	All	All
Application	Kaspersky Lab	Kaspersky Anti-virus Personal	5.0	All	All	All
Application	Kaspersky Lab	Kaspersky Anti-virus Personal	5.0.227	All	All	All
Application	Kaspersky Lab	Kaspersky Anti-virus Personal	5.0.228	All	All	All
Application	Kaspersky Lab	Kaspersky Anti-virus Personal	5.0.325	All	All	All
Application	Kaspersky Lab	Kaspersky Internet Security	7.0.1.325	All	All	All
Application	Kaspersky Lab	Kaspersky Internet Security	7.0.1.325	All	All	All
Application	Kaspersky Lab	Kaspersky Internet Security 2009	8.0.0.506	All	All	All
Application	Kaspersky Lab	Kaspersky Internet Security 2009	8.0.0.506	All	All	All
Application	Kaspersky Lab	Kaspersky Internet Security 2010	9.0.0.463	All	All	All
Application	Kaspersky Lab	Kaspersky Internet Security 2010	9.0.0.463	All	All	All

References

Reference	Source	Link	Tags
Kaspersky Internet Security Unsafe Access Control Configuration for BASES Folder Lets Local Users Gain Elevated Privileges - SecurityTracker	SECTRACK	www.securitytracker.com
Webmail : Solution de messagerie professionnelle - OVHcloud- OVH	VUPEN	www.vupen.com	Vendor Advisory
SecurityFocus	BUGTRAQ	www.securityfocus.com
Kaspersky Anti-Virus Unsafe Access Control Configuration for BASES Folder Lets Local Users Gain Elevated Privileges - SecurityTracker	SECTRACK	www.securitytracker.com
Kaspersky Lab (Multiple Products) - Local Privilege Escalation - Windows local Exploit	EXPLOIT-DB	www.exploit-db.com	Exploit
Kaspersky Anti-Virus 2010 Denial of Service and Privilege Escalation - Secunia Advisories - Vulnerability Information - Secunia.com	SECUNIA	secunia.com	Vendor Advisory
Kaspersky Products Insecure Default Directory Permissions - Secunia Advisories - Vulnerability Information - Secunia.com	SECUNIA	secunia.com	Vendor Advisory
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

There are currently no legacy QID mappings associated with this CVE.