CVE-2006-4926

Kaspersky Labs Anti-Virus <6.0.0.303 - RCE

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-4926. PoCs published by Nanika.

AI-analyzed exploit summary This exploit targets a kernel privilege escalation vulnerability in Kaspersky Internet Security 6.0.0.303 on Windows XP SP2. It leverages a shellcode to bind a shell on port 8080, achieving SYSTEM-level access by manipulating kernel structures and APC objects.

Description

The NDIS-TDI Hooking Engine, as used in the (1) KLICK (KLICK.SYS) and (2) KLIN (KLIN.SYS) device drivers 2.0.0.281 for in Kaspersky Labs Anti-Virus 6.0.0.303 and other Anti-Virus and Internet Security products, allows local users to execute arbitrary code via crafted Irp structure with invalid addresses in the 0x80052110 IOCTL.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Nanika · c++localwindows
https://www.exploit-db.com/exploits/2676

This exploit targets a kernel privilege escalation vulnerability in Kaspersky Internet Security 6.0.0.303 on Windows XP SP2. It leverages a shellcode to bind a shell on port 8080, achieving SYSTEM-level access by manipulating kernel structures and APC objects.

Classification
Working Poc 95%
Attack Type
Lpe
Complexity
Complex
Reliability
Reliable
Target: Kaspersky Internet Security 6.0.0.303 on Windows XP SP2
No auth needed
Prerequisites: Windows XP SP2 with Kaspersky Internet Security 6.0.0.303 installed · Hardware DEP disabled
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (10)

Core 10
Core References
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/449289/100/0/threaded
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/29677
Exploit, Patch vdb-entry x_refsource_osvdb
http://www.osvdb.org/29891
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/449301/100/0/threaded
Patch, Vendor Advisory third-party-advisory x_refsource_idefense
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=425
Patch, Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/22478
Exploit, Patch vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/20635
Exploit, Patch vdb-entry x_refsource_sectrack
http://securitytracker.com/id?1017093
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2006/4117

Scores

EPSS 0.0028
EPSS Percentile 51.8%

Details

Status published
Products (5)
kaspersky_lab/kaspersky_anti-virus 5.0
kaspersky_lab/kaspersky_anti-virus 6.0
kaspersky_lab/kaspersky_anti-virus_personal 5.0
kaspersky_lab/kaspersky_anti-virus_personal_pro 5.0
kaspersky_lab/kaspersky_internet_security 6.0 maintenance_pack_2
Published Oct 20, 2006
Tracked Since Feb 18, 2026