The Kaseya Virtual Systems Administrator (VSA) agent component contains a NULL pointer deference flaw which is outlined in CVE-2014-2926.
Kaseya's agent driver is vulnerable to a NULL pointer dereference. A local authenticated attacker may be able to trigger a NULL pointer dereference in the local agent driver causing a denial of service (crash of the agent service). This only impacts the specific machine the agent is installed on and requires a locally authenticated user to trigger the event.
For VSA Version 7.0, install patch 18.104.22.168 and then update your agents to version 22.214.171.124 or higher (Agent-> Upgrade Agent->Update Agent).
For VSA Version 6.5, install patch 126.96.36.199 and then update your agents to version 188.8.131.52 or higher (Agent-> Upgrade Agent->Update Agent).
For VSA 6.3 or earlier, it is recommended to upgrade the system to version 6.5 or 7.0.