Intrusion Prevention

Kaspersky.ActiveX.Control.Arbitrary.File.Deletion

Description

Kaspersky AntiVirus has a file deletion vulnerability. A remote attacker could delete any file on the victim system via a specially-crafted web page.

Affected Products

Kaspersky Labs Kaspersky Antivirus 6.0
Kaspersky Labs Kaspersky Internet Security 6.0

Impact

System compromise.

Recommended Actions

Apply patch, available from the Web site.
http://www.kaspersky.com/technews?id=203038693

CVE References

CVE-2007-1112