Name of the Vulnerable Software and Affected Versions Kaspersky Anti-Virus (affected versions not specified) Kaspersky Internet Security (affected versions not specified) Kaspersky Total Security (affected versions not specified) Kaspersky Free (affected versions not specified) Kaspersky Security Cloud (affected versions not specified) Kaspersky Password Manager (affected versions not specified) Kaspersky Safe Kids (affected versions not specified) Kaspersky Software Updater (affected versions not specified) Kaspersky Endpoint Security (affected versions not specified) Kaspersky Small Office Security (affected versions not specified) Kaspersky Anti Targeted Attack Agent (affected versions not specified)

Description The issue exists due to insufficient input validation in the inter-process communication component of Kaspersky antivirus products. Exploitation of this issue may allow an attacker to execute arbitrary code.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.