In association with heise online

30 May 2007, 15:29

Multiple security vulnerabilities in F-Secure

  • Twitter
  • Facebook
  • submit to slashdot
  • StumbleUpon
  • submit to reddit

F-Secure has reported multiple security vulnerabilities in its anti-virus products for consumer and enterprise users. By exploiting these vulnerabilities attackers can inject and execute malicious code or crash the service using crafted executable files or archives.

Crafted LHA archives can cause a buffer overflow during unpacking. This is the same bug as was fixed in GZIP back in the autumn of last year. Sergio Alvarez from n.runs has discovered further vulnerabilities when processing crafted archives and executable files, which can cause F-Secure products to enter infinite loops.

A third security vulnerability can occur when processing I/O request packets (IRP) in the real time scanning component, which fails to correctly check the address space it accesses. Local users can exploit this to escalate their privileges.

F-Secure is already distributing updates which automatically install the software for the consumer products, such as F-Secure Anti-Virus and Internet Security. For the enterprise solutions, administrators will need to download and install the patches, which F-Secure links to in its security bulletins, themselves.

See also:


Print Version | Send by email | Permalink:

  • July's Community Calendar

The H Open

The H Security

The H Developer

The H Internet Toolkit