| |
| |||||||
| Home | Register | Blogs | FAQ | Members List | Calendar | Downloads | Arcade | Mark Forums Read |
| Software Security Discussing software security algorithms, tricks, vulnerabilities |
 |
| | LinkBack | Thread Tools | Display Modes |
Oct 5, 2005, 09:31
| #1 |
| Administrator  Join Date: Sep 2001 Location: South Korea, Gumi
Posts: 7,189
Blog Entries: 15 Rep Power: 10 Reputation:
313 | Flaw found in Kaspersky antivirus A "critical" flaw in Kaspersky Lab's antivirus software could let an attacker commandeer systems that use the products, a security researcher warned Monday. The problem lies in Kaspersky's antivirus library, security researcher Alex Wheeler wrote in an advisory (download PDF of advisory here). The vulnerability likely affects multiple Kaspersky products on various platforms because the library is used throughout the company's consumer and corporate software, he said. Additionally, third-party products that use Kaspersky's antivirus technology could also be vulnerable, Wheeler said. A remote attacker could exploit the heap overflow flaw by sending a malformed CAB file--a compression file--to a vulnerable system, the French Security Incident Response Team said in an advisory. The CAB file could be sent in an e-mail, for example, and once the Kaspersky antivirus scanner had accepted it, the malicious code would be in the system. No user interaction is required, Wheeler said. FrSirt describes the issue as "critical," its highest rating. A representative for Kaspersky in Moscow could not immediately comment on the issue and said that the Russian company would need to investigate. Antivirus software is like low-hanging fruit to hackers, Yankee Group analysts wrote in a research paper released earlier this year. As the pool of easily exploitable security bugs in Microsoft Windows dries up, attackers are looking to security software for holes to get into systems, the analysts said. At the Black Hat Briefings security conference this summer, researchers at Internet Security Systems outlined vulnerabilities in antivirus products. ISS has discovered bugs in products from security software makers including Symantec, McAfee, Trend Micro and F-Secure. http://news.com.com/Flaw+found+in+Kaspersky+antivirus/2100-1002_3-5887857.html |
|   |
|
Oct 6, 2005, 15:19
| #2 |
| Provocative  Join Date: Sep 2002 Location: Ilha dos Amores
Posts: 1,409
Rep Power: 7 Reputation:
98 | Oh! sh*t! Where can we feel safe??? 
__________________ Red Stone J'ai besoin de toi, De tes mains sur moi, De ton corps doux et chaud, J'ai envie d'être aimé Domino From a beautiful love song of the 50s called Domino, music by Louis Ferrari, lyrics by Jacques Plante |
|
| |
|
Oct 6, 2005, 16:56
| #3 |
| инсценирующий жизнь ![[ Xelgen ]'s Avatar](http://forum.armkb.com/images/avatars/avatar40.gif){kind=avatar} Join Date: Jul 2002 Location: Fireplace of Ecotopia
Posts: 4,165
Rep Power: 7 Reputation:
64 ![Send a message via ICQ to [ Xelgen ]](http://forum.armkb.com/images/misc/im_icq.gif) | Hm, yes pretty..  BTW, dont' intsall KAV 2006 Beta, no your computers yet.. I've tested it, it is too buggy and it spoiled up my WinXP..
__________________ ...ибо... Rgrdz. [ Кселджэн ] |
|
| |
|
| Thread Tools | |
| Display Modes | |
| |
Similar Threads | ||||
| Thread | Thread Starter | Forum | Replies | Last Post |
| Ancient necropolis found in Egypt | Astro | Science and Education | 2 | Apr 21, 2005 09:35 |
| New Mersenne Prime Found!!! | Н.К.Рерих | General | 4 | May 22, 2004 08:53 |
| Udivitel'no moshniy antivirus!!! | Will Shakespeare | General | 13 | May 10, 2002 18:33 |
| Antivirus dlya MAC.... | louie | General | 0 | Apr 26, 2002 16:07 |
| kaspersky | z0mbie | General | 5 | Apr 2, 2002 22:39 |
Linear Mode
