漏洞起因
输入验证错误
影响系统
Kaspersky Labs Work Space Security
Kaspersky Labs Targeted Security
Kaspersky Labs Small Office Security
Kaspersky Labs Security for Microsoft Exchange 2007
Kaspersky Labs Security for Microsoft Exchange 2003
Kaspersky Labs Open Space Security
Kaspersky Labs nti-Virus for Lotus Notes/Domino
Kaspersky Labs Mobile Securit
Kaspersky Labs Mail Gateway Kaspersky?? Anti-virus for MIMEsweeper
Kaspersky Labs Internet Security
Kaspersky Labs Enterprise Space Security
Kaspersky Labs Business Space Security
Kaspersky Labs Anti-Virus for Windows Workstation
Kaspersky Labs Anti-Virus for Windows Server Enterprise Edition
Kaspersky Labs Anti-Virus for Windows Server
Kaspersky Labs Anti-Virus for Samba Server
Kaspersky Labs Anti-Virus for Proxy Server
Kaspersky Labs Anti-Virus for Novell NetWare
Kaspersky Labs Anti-Virus for Microsoft ISA Server
Kaspersky Labs Anti-Virus for Linux Workstation
Kaspersky Labs Anti-Virus for Linux Mail Server
Kaspersky Labs Anti-Virus for Linux File Server
Kaspersky Labs Anti-Virus for Check Point Firewall-1
Kaspersky Labs Anti-Virus
不受影响系统
危害
远程攻击者可以利用漏洞绕过安全检测进行攻击。
攻击所需条件
攻击者必须构建恶意PDF文件,诱使用户打开。
漏洞信息
Kaspersky多个安全产品处理PDF文件存在问题,远程攻击者可以利用漏洞绕过安全检测进行攻击。
构建以"%PDF"起始,并以"%%EOF"结尾的PDF文件,可导致Adobe Acrobat等应用程序正常打开,而kaspersky引擎不能正确检测PDF文件中的恶意数据,导致绕过安全检测并执行。
测试方法
%PDF
Malicious content here
%%EOF
厂商解决方案
目前没有解决方案提供:
http://www.kaspersky.com/
漏洞提供者
Thierry Zoller
0 条评论。