virus logo Intrusion Prevention

Kaspersky.Internet.Security.Insecure.Certificate.Validation

description-logoDescription

This indicates an attack attempt to exploit a Directory Traversal vulnerability in Kaspersky Internet Security.
The vulnerability is caused by an improper validation of user supplied data when the vulnerable application handles a maliciously crafted request. An attacker can exploit this to execute arbitrary code on the affected machine via a crafted request.

affected-products-logoAffected Products

Kaspersky Labs Internet Security

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems

recomended-action-logoRecommended Actions

Currently we are unaware of any vendor supplied patch for this issue

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

References

539
ID 41721
Created Dec 07, 2015
Updated May 26, 2016
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon lightgray-background-circle-icon
CVE ID
Default Action drop
Active
Affected OS Windows, MacOS
Affected App Other