OpenCVE

The NDIS-TDI Hooking Engine, as used in the (1) KLICK (KLICK.SYS) and (2) KLIN (KLIN.SYS) device drivers 2.0.0.281 for in Kaspersky Labs Anti-Virus 6.0.0.303 and other Anti-Virus and Internet Security products, allows local users to execute arbitrary code via crafted Irp structure with invalid addresses in the 0x80052110 IOCTL.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

AV:L/AC:L/Au:N/C:C/I:C/A:C

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Kaspersky Lab	Kaspersky Anti-virus Kaspersky Anti-virus Personal Kaspersky Anti-virus Personal Pro Kaspersky Internet Security

Configuration 1 [-]

OR	cpe:2.3:a:kaspersky_lab:kaspersky_anti-virus:5.0::windows_workstations:::::
	cpe:2.3:a:kaspersky_lab:kaspersky_anti-virus:6.0::workstations:::::
	cpe:2.3:a:kaspersky_lab:kaspersky_anti-virus_personal:5.0:::::::*
	cpe:2.3:a:kaspersky_lab:kaspersky_anti-virus_personal_pro:5.0:::::::*
	cpe:2.3:a:kaspersky_lab:kaspersky_internet_security:6.0:maintenance_pack_2::::::

No data.

References

Link	Providers
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=425
http://secunia.com/advisories/22478
http://securitytracker.com/id?1017093
http://www.kaspersky.com/technews?id=203038678
http://www.osvdb.org/29891
http://www.securityfocus.com/archive/1/449289/100/0/threaded
http://www.securityfocus.com/archive/1/449301/100/0/threaded
http://www.securityfocus.com/bid/20635
http://www.vupen.com/english/advisories/2006/4117
https://exchange.xforce.ibmcloud.com/vulnerabilities/29677

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2006-10-20T22:00:00

Updated: 2024-08-07T19:32:22.423Z

Reserved: 2006-09-22T00:00:00

Link: CVE-2006-4926

Vulnrichment

No data.

NVD

Status : Modified

Published: 2006-10-20T22:07:00.000

Modified: 2024-11-21T00:17:10.870

Link: CVE-2006-4926

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2006-10-20T00:00:00", "descriptions": [{"lang": "en", "value": "The NDIS-TDI Hooking Engine, as used in the (1) KLICK (KLICK.SYS) and (2) KLIN (KLIN.SYS) device drivers 2.0.0.281 for in Kaspersky Labs Anti-Virus 6.0.0.303 and other Anti-Virus and Internet Security products, allows local users to execute arbitrary code via crafted Irp structure with invalid addresses in the 0x80052110 IOCTL."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-17T20:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "20061020 [Reversemode Advisory] Kaspersky Anti-Virus Privilege Escalation", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/449289/100/0/threaded"}, {"name": "kaspersky-klinklick-privilege-escalation(29677)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/29677"}, {"name": "29891", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/29891"}, {"name": "20061020 Re: iDefense Security Advisory 10.19.06: Kaspersky Labs Anti-Virus IOCTL Local Privilege Escalation Vulnerability", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/449301/100/0/threaded"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.kaspersky.com/technews?id=203038678"}, {"name": "20061020 Kaspersky Labs Anti-Virus IOCTL Local Privilege Escalation Vulnerability", "tags": ["third-party-advisory", "x_refsource_IDEFENSE"], "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=425"}, {"name": "22478", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/22478"}, {"name": "20635", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/20635"}, {"name": "1017093", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://securitytracker.com/id?1017093"}, {"name": "ADV-2006-4117", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2006/4117"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2006-4926", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The NDIS-TDI Hooking Engine, as used in the (1) KLICK (KLICK.SYS) and (2) KLIN (KLIN.SYS) device drivers 2.0.0.281 for in Kaspersky Labs Anti-Virus 6.0.0.303 and other Anti-Virus and Internet Security products, allows local users to execute arbitrary code via crafted Irp structure with invalid addresses in the 0x80052110 IOCTL."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "20061020 [Reversemode Advisory] Kaspersky Anti-Virus Privilege Escalation", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/449289/100/0/threaded"}, {"name": "kaspersky-klinklick-privilege-escalation(29677)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/29677"}, {"name": "29891", "refsource": "OSVDB", "url": "http://www.osvdb.org/29891"}, {"name": "20061020 Re: iDefense Security Advisory 10.19.06: Kaspersky Labs Anti-Virus IOCTL Local Privilege Escalation Vulnerability", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/449301/100/0/threaded"}, {"name": "http://www.kaspersky.com/technews?id=203038678", "refsource": "CONFIRM", "url": "http://www.kaspersky.com/technews?id=203038678"}, {"name": "20061020 Kaspersky Labs Anti-Virus IOCTL Local Privilege Escalation Vulnerability", "refsource": "IDEFENSE", "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=425"}, {"name": "22478", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/22478"}, {"name": "20635", "refsource": "BID", "url": "http://www.securityfocus.com/bid/20635"}, {"name": "1017093", "refsource": "SECTRACK", "url": "http://securitytracker.com/id?1017093"}, {"name": "ADV-2006-4117", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2006/4117"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T19:32:22.423Z"}, "title": "CVE Program Container", "references": [{"name": "20061020 [Reversemode Advisory] Kaspersky Anti-Virus Privilege Escalation", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/449289/100/0/threaded"}, {"name": "kaspersky-klinklick-privilege-escalation(29677)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/29677"}, {"name": "29891", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/29891"}, {"name": "20061020 Re: iDefense Security Advisory 10.19.06: Kaspersky Labs Anti-Virus IOCTL Local Privilege Escalation Vulnerability", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/449301/100/0/threaded"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www.kaspersky.com/technews?id=203038678"}, {"name": "20061020 Kaspersky Labs Anti-Virus IOCTL Local Privilege Escalation Vulnerability", "tags": ["third-party-advisory", "x_refsource_IDEFENSE", "x_transferred"], "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=425"}, {"name": "22478", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/22478"}, {"name": "20635", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/20635"}, {"name": "1017093", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://securitytracker.com/id?1017093"}, {"name": "ADV-2006-4117", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2006/4117"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2006-4926", "datePublished": "2006-10-20T22:00:00", "dateReserved": "2006-09-22T00:00:00", "dateUpdated": "2024-08-07T19:32:22.423Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:kaspersky_lab:kaspersky_anti-virus:5.0:*:windows_workstations:*:*:*:*:*", "matchCriteriaId": "5897A334-2627-480C-9CF3-85AF3B7650BF", "vulnerable": true}, {"criteria": "cpe:2.3:a:kaspersky_lab:kaspersky_anti-virus:6.0:*:workstations:*:*:*:*:*", "matchCriteriaId": "53049BB1-486B-4C01-A3F5-F900FAD33024", "vulnerable": true}, {"criteria": "cpe:2.3:a:kaspersky_lab:kaspersky_anti-virus_personal:5.0:*:*:*:*:*:*:*", "matchCriteriaId": "2BA07931-220A-4FCC-A83D-0C91563385DB", "vulnerable": true}, {"criteria": "cpe:2.3:a:kaspersky_lab:kaspersky_anti-virus_personal_pro:5.0:*:*:*:*:*:*:*", "matchCriteriaId": "A64212DE-796D-4D5D-901A-0B5FA40D9C39", "vulnerable": true}, {"criteria": "cpe:2.3:a:kaspersky_lab:kaspersky_internet_security:6.0:maintenance_pack_2:*:*:*:*:*:*", "matchCriteriaId": "95A787E0-7060-4544-993A-9CB319B6925E", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "The NDIS-TDI Hooking Engine, as used in the (1) KLICK (KLICK.SYS) and (2) KLIN (KLIN.SYS) device drivers 2.0.0.281 for in Kaspersky Labs Anti-Virus 6.0.0.303 and other Anti-Virus and Internet Security products, allows local users to execute arbitrary code via crafted Irp structure with invalid addresses in the 0x80052110 IOCTL."}, {"lang": "es", "value": "El NDIS-TDI Hooking Engine, seg\u00fan lo utilizado en (1) KLICK (KLICK.SYS) y (2) KLIN (KLIN.SYS) en los controladores de dispositivos 2.0.0.281 en Kaspersky Labs Anti-Virus 6.0.0.303 y otros antivirus o productos de seguridad de Internet, permite a un usuario local ejecutar c\u00f3digo de su elecci\u00f3n a trav\u00e9s de un estructura Irp artesanal con una direcci\u00f3n inv\u00e1lida en 0x80052110 IOCTL."}], "id": "CVE-2006-4926", "lastModified": "2024-11-21T00:17:10.870", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 10.0, "obtainAllPrivilege": true, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2006-10-20T22:07:00.000", "references": [{"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=425"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://secunia.com/advisories/22478"}, {"source": "cve@mitre.org", "tags": ["Exploit", "Patch"], "url": "http://securitytracker.com/id?1017093"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://www.kaspersky.com/technews?id=203038678"}, {"source": "cve@mitre.org", "tags": ["Exploit", "Patch"], "url": "http://www.osvdb.org/29891"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/449289/100/0/threaded"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/449301/100/0/threaded"}, {"source": "cve@mitre.org", "tags": ["Exploit", "Patch"], "url": "http://www.securityfocus.com/bid/20635"}, {"source": "cve@mitre.org", "url": "http://www.vupen.com/english/advisories/2006/4117"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/29677"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=425"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "http://secunia.com/advisories/22478"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit", "Patch"], "url": "http://securitytracker.com/id?1017093"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "http://www.kaspersky.com/technews?id=203038678"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit", "Patch"], "url": "http://www.osvdb.org/29891"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/archive/1/449289/100/0/threaded"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/archive/1/449301/100/0/threaded"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit", "Patch"], "url": "http://www.securityfocus.com/bid/20635"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.vupen.com/english/advisories/2006/4117"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/29677"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}