F-Secure's virus scanner is blind in one eye
F-Secure has released an update for its virus scanners in order to remedy two problems that prevent the products from correctly inspecting files and thus overlooking the contaminants they might contain. Specifically, the scanners stop inspecting executable files with certain names and output an error, although users can still, for example, launch them by double-clicking on them. In addition, the scanners do not monitor removable disks under certain conditions if the network drive check is disabled. Only the client and server products for Windows are affected:
- F-Secure Anti-Virus 2003-2006
- F-Secure Internet Security 2003-2006
- F-Secure Service Platform for Service Providers 6.xx and earlier
- F-Secure Anti-Virus for Workstations version 5.44 and earlier
- F-Secure Anti-Virus Client Security version 6.01 and earlier
- F-Secure Anti-Virus for Windows Servers version 5.52 and earlier
- F-Secure Anti-Virus for Citrix Servers version 5.50 - 5.52
- F-Secure Anti-Virus for MIMEsweeper version 5.61 and earlier
Updates are automatically distributed and installed for Anti-Virus 2003-2006, Internet Security 2003-2006, F-Secure Personal Express and Internet Security for Service Providers. Users of other products have to download and install the patches themselves.
According to F-Secure, its software for Linux, mobile devices, and gateway applications is not affected.
- Scanning bypass vulnerability in antivirus products for Windows, F-Secure's error report