On October 19 2006, iDefence Labs released information about a vulnerability in the Klin.sys driver, which could be exploited to take over administration of a computer protected by Kaspersky® Anti-Virus. A full description of the vulnerability is available on the iDefence Labs website (A full description of the vulnerability).
The vulnerability affects the following products from the company:
- Kaspersky Anti-Virus Personal 5.0
- Kaspersky Anti-Virus Personal Pro 5.0
- Kaspersky Anti-Virus 5.0 for Windows Workstations
- Kaspersky Anti-Virus 6.0
- Kaspersky Internet Security 6.0
Kaspersky Lab had already been informed of the vulnerability on October 12, 2006, a week before iDefense Labs published its report.
The corrected version of the Klin.sys driver was made available to users of the above products via the usual means of updates to antivirus databases. To close the vulnerability, users simply need to update the product’s antivirus databases using the option “Update network drivers and attack signatures” after 12th October 2006 and restart the computer.