Otherwise, local administrator privileges would be required to modify the boot loader component. An attacker would need physical access to the computer to exploit it. This issue allowed to bypass the UEFI Secure Boot security feature.
This component is incorporated in Kaspersky Rescue Disk (KRD) and was trusted by the Authentication Agent of Full Disk Encryption in Kaspersky Endpoint Security (KES). An attacker would need to know some additional information (for example, time of password generation).Ī component of Kaspersky custom boot loader allowed loading of untrusted UEFI modules due to insufficient check of their authenticity. Password generator feature in Kaspersky Password Manager was not completely cryptographically strong and potentially allowed an attacker to predict generated passwords in some cases. The installer of Kaspersky Anti-Ransomware Tool (KART) prior to KART 4.0 Patch C was vulnerable to a DLL hijacking attack that allowed an attacker to elevate privileges during installation process.
0 kommentar(er)
