CVE-2011-0515
Kingsoft AntiVirus 2011 SP5.2 - Denial of Service via KiFastCallEntry Hook
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2011-0515. PoCs published by MJ0011.
AI-analyzed exploit summary This exploit targets a kernel-mode denial-of-service vulnerability in Kingsoft AntiVirus 2011 SP5.2 by triggering improper handling of the user stack pointer in KisKrnl.sys via a crafted interrupt call.
Description
KisKrnl.sys 2011.1.13.89 and earlier in Kingsoft AntiVirus 2011 SP5.2 allows local users to cause a denial of service (crash) via a crafted request that is not properly handled by the KiFastCallEntry hook.
Exploits (1)
exploitdb
WORKING POC
by MJ0011 · textdoswindows
https://www.exploit-db.com/exploits/15998
This exploit targets a kernel-mode denial-of-service vulnerability in Kingsoft AntiVirus 2011 SP5.2 by triggering improper handling of the user stack pointer in KisKrnl.sys via a crafted interrupt call.
Classification
Working Poc 90%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target:
Kingsoft AntiVirus 2011 SP5.2 with KisKrnl.sys <= 2011.1.13.89
No auth needed
Prerequisites:
Windows XP SP3 with vulnerable Kingsoft AntiVirus installed
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026
Full analysis →
References (5)
Core 5
Core References
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/515767/100/0/threaded
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/64723
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/42937
Exploit exploit
x_refsource_exploit-db
http://www.exploit-db.com/exploits/15998
Exploit vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/45821
Scores
EPSS
0.0088
EPSS Percentile
54.4%
Details
Status
published
Products (2)
kingsoft/kingsoft_antivirus
2010.04.26.648
kingsoftsecurity/kingsoft_antivirus
2011 sp5.2
Published
Jan 20, 2011
Tracked Since
Feb 18, 2026