In association with heise online

29 May 2007, 10:42

Further vulnerabilities in anti-virus software

  • Twitter
  • Facebook
  • submit to slashdot
  • StumbleUpon
  • submit to reddit

Having reported on Avast's anti-virus software, Sergio Alvarez from security company n.runs now seems to have turned his attention to Avira's Antivir product, in which he has discovered a number of security-related vulnerabilities. A buffer overflow which can be used to inject and execute code can occur when processing LZH compressed files. A division by zero can occur with UPX files and TAR files can cause the software to enter an infinite loop.

Avira has, however, been quick to react. Less than two weeks after being notified by Alvarez, the vendor has distributed AVPack version and a new engine version, which fix the problem, to all customers.

See also:


Print Version | Send by email | Permalink:

  • July's Community Calendar

The H Open

The H Security

The H Developer

The H Internet Toolkit