In association with heise online

22 July 2007, 11:02

Vulnerabilities in Panda Antivirus and NOD32

  • Twitter
  • Facebook
  • submit to slashdot
  • StumbleUpon
  • submit to reddit

Security services provider n.runs has released a number of reports of vulnerabilities in Eset's NOD32 and in Panda's anti-virus packages which can be used by an attacker to crash the anti-virus program or even to inject and execute code on a victim's computer without user intervention. For the Panda product, reading a crafted EXE file, such as an e-mail attachment, is sufficient to provoke the problem. The report indicates that Panda fixed the problem just a few days ago, but does not reveal whether the fix is being distributed via the automatic update system.

The vulnerabilities in NOD32 were, according to n.runs, fixed in late May. It is not clear why this information is being published at this late stage. Processing of a crafted CAB archive by NOD32 is sufficient to trigger a heap overflow which can be exploited to inject code. In addition, files packed using ASPACK or FSG cause a crash or excess CPU usage on the system.

See also the following security advisories from n.runs:


Print Version | Send by email | Permalink:

  • July's Community Calendar

The H Open

The H Security

The H Developer

The H Internet Toolkit