News Document Title:
====================
Memory Corruption in Kaspersky IS&AV 2011/2012 released


Release Date:
=============
2011-12-20


Laboratory Article:
===================
The vulnerability researcher Benjamin Kunz Mejri discovered yesterday a new zero-day memory corruption vulnerability in 
"Kaspersky Anti-Virus 2011/2012 & Internet Security 2011/2012". The security vulnerability is local exploitable while 
loading a manipulated .CFG (Configuration/Setting) File. The vulnerability is caused by an invalid pointer corruption 
through the kaspersky exception/protection filters, which could be exploited by attackers to crash the complete software 
process on all instances (Browser+Addon, Sidebar & Software). Benjamin K.M. used a new concept to identify the  memory 
corruption issue and has bypassed the protection filter exception (import) of the software.


Affected Version(s):
Kaspersky Anti-Virus 2012 & Kaspersky Internet Security 2012
- KIS 2012 v12.0.0.374
- KAV 2012 v12.x

Kaspersky Anti-Virus 2011 & Kaspersky Internet Security 2011
- KIS 2011 v11.0.0.232 (a.b)
- KAV 11.0.0.400
- KIS 2011 v12.0.0.374

Kaspersky Anti-Virus 2010 & Kaspersky Internet Security 2010


Advisory:	http://www.vulnerability-lab.com/get_content.php?id=129
PoC Video:	http://www.vulnerability-lab.com/get_content.php?id=19
Article:          http://news.hitb.org/content/researcher-discovered-memory-corruption-vulnerability-kaspersky-20112012-products