#VU38421 Incorrect permission assignment for critical resource in Kaspersky Internet Security - CVE-2017-12816

Cybersecurity Help s.r.o.

Published: 2017-08-25 | Updated: 2020-08-08

Vulnerability identifier: #VU38421

Vulnerability risk: High

CVSSv4.0: 8.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]

CVE-ID: CVE-2017-12816

CWE-ID: CWE-732

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Kaspersky Internet Security
Client/Desktop applications / Antivirus software/Personal firewalls

Vendor: Kaspersky Lab

Description

The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.

In Kaspersky Internet Security for Android 11.12.4.1622, some of application exports activities have weak permissions, which might be used by a malware application to get unauthorized access to the product functionality by using Android IPC.

Mitigation
Install update from vendor's website.

Vulnerable software versions

Kaspersky Internet Security: 11.12.4.1622

External links
https://www.securityfocus.com/bid/100505
https://support.kaspersky.com/vulnerability.aspx?el=12430#090817

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in Kaspersky Internet Security