Exploit protection in Kaspersky Internet Security 2014

 

Kaspersky Internet Security 2014

 
 
 

How to configure exploit protection in Kaspersky Internet Security 2014

Back to "Protection Center"
2013 Aug 13 ID: 9777
 
 
 
 

What is exploit prevention

A functionality to prevent and block exploit actions has been added to Kaspersky Internet Security 2014. This functionality protects your computer from malicious programs that use vulnerabilities in the most common applications, such as Adobe Reader, Internet Explorer, Firefox and etc. to perform their malicious actions in order to get control over computer, steal personal data and other.

Exploit Prevention functionality in Kaspersky Internet Security 2014 does the following:

  • Controls executable files started from vulnerable applications and web browsers (for example, an attempt to run an executable file by a program designed for viewing documents).
  • Controls suspicious actions of vulnerable applications (for example, if the rights of a running vulnerable application are exceeded and it writes itself into the other processes’ system memory).
  • Monitors previous program starts (for example, whether the program was started by the user or by an exploit).
  • Tracks a source of a malicious code (for example, a web browser that started download of an infected file; remote web address).
  • Prevents using application vulnerabilities.

Kaspersky Internet Security 2014 tracks executable files run by vulnerable applications. If Kaspersky Internet Security 2014 detects an attempt to run an executable file from a vulnerable application that has not been initiated by the user, the application blocks the run (the user can select a different action to be performed upon threat detection). Information about blocking of the executable file run is logged in the Exploit Prevention report.

For maximum protection the lists of applications with detected vulnerabilities are updated together with Kaspersky Internet Security 2014 databases.

How to configure exploit prevention settings

By default exploit prevention in Kaspersky Internet Security 2014 is enabled. In order to enable/disable exploit prevention, do the following:

  1. Open Kaspersky Internet Security 2014.
  2. In the bottom right part of the window, click the Settings link.

  1. In the Settings window, select Protection Center and then System Watcher.

  1. In the System Watcher settings window under Automatic Exploit Prevention check/clear the box Monitor attempts to perform unauthorized operations.
  2. Select an action that should be performed upon detecting an attempt to run an executable file from a vulnerable application:
  • Select action automatically — This variant is available only in the automatic protection mode.
  • Prompt for action —This variant is available only in the interactive protection mode.
  • Allow action — the application always allows running the file.
  • Block action — the application always blocks running the file from a vulnerable program.

  1. Close the Settings window.
 
 
 
 
Was this information helpful?
Yes No
Thank you
 
 
 

Applies To:


 

 
 

How can we improve this article?

Your feedback will be used for content improvement purposes only. If you need assistance, please contact technical support.

Submit Submit

Thank you for your feedback!

Your suggestions will help improve this article.

OK