Kaspersky AntiVirus – ThinApp Parser Stack Buffer Overflow

• Exploit Database
• 18 阅读

• 作者： Google Security Research
  日期： 2015-09-22
• 类别：

  • local
  平台：

  • windows
• 来源：https://www.exploit-db.com/exploits/38287/

• Source: https://code.google.com/p/google-security-research/issues/detail?id=518
  
  A remotely exploitable stack buffer overflow in ThinApp container parsing. Kaspersky Antivirus (I've tested version 15 and 16) and other products using the Kaspersky Engine (such as ZoneAlarm) are affected.
  
  Proof of Concept:
  https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/38287.zip