Kaspersky Internet Security is vulnerable to a denial of service condition. If a web page is viewed that contains a maliciously formed regular expression, Kaspersky Internet Security will exhaust its CPU resources, rendering the software unusable, so it cannot be shut down or restarted.
Kaspersky Internet Security 18.104.22.16851 and possibly other versions
Denial of Service
Exploitation of this vulnerability will render the service on the affected system unresponsive. This is a permanent denial of service, so the service will be unresponsive until restarted.
BeyondTrust Prevention and Detection:
BeyondTrust's Retina® Network Security Scanner scans devices to detect for this vulnerability.
- 33337 - Kaspersky Internet Security Denial of Service (20140320) (Zero-Day)
- 33338 - Kaspersky Internet Security Denial of Service (20140320) (Zero-Day) - x64
No mitigation is available.