QwikSec

Security Database

CVE

CWE

Training

CVE-2009-2966

Published: Aug 25, 2009

Modified: Aug 7, 2024

PUBLISHED

Description

avp.exe in Kaspersky Internet Security 9.0.0.459 and Anti-Virus 9.0.0.463 allows remote attackers to cause a denial of service (CPU consumption and network connectivity loss) via an HTTP URL request that contains a large number of dot "." characters.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

third-party-advisory

x_refsource_SECUNIA

vdb-entry

x_refsource_OSVDB

20090819 Kaspersky AV/IS 2010 (avp.exe) Denial-of-Service

third-party-advisory

x_refsource_SREASONRES

vdb-entry

x_refsource_BID

vdb-entry

x_refsource_SECTRACK

vdb-entry

x_refsource_SECTRACK

20090818 Kaspersky AV/IS 2010 (avp.exe) Denial-of-Service

mailing-list

x_refsource_FULLDISC

http://www.h-online.com/security/Kaspersky-confirm-and-close-DoS-vulnerability--/news/114077

x_refsource_MISC

kaspersky-antivirus-internet-http-dos(52571)

vdb-entry

x_refsource_XF

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.