What the Tech logo
Welcome! Register for a free account (or login) > How does it work?
  1. Quickly register. It will only take 60 seconds.
  2. Start a new topic. Ask your question. Wait for an email reply.
  3. Is your system infected? Begin reading the malware removal guide.
 register button
Reply to this topicStart new topic
> Multiple AV vendor vulns / updates / issues
AplusWebMaster
post Jul 24 2007, 04:18 AM
Post #1


AplusWebMaster
*****

Group: Authentic Member
Posts: 4,560
Joined: 30-December 03
From: USA
Member No.: 1,643
Operating System: XP/SP3
FYI...

> http://atlas.arbor.net/briefs/index#1027704494
Panda Antivirus EXE File Parsing Buffer Overflow Vulnerability
Severity: High Severity
Published: July 23, 2007
Panda AV is vulnerable to a buffer overflow when processing Windows EXE files. The error comes in an integer cast when parsing EXE header data. A malicious attacker could send the victim a malformed EXE file to be processed by Panda AV. This would then allow the attacker to run arbitrary code on the victim's computer. Updates have been made available.
Analysis: This is a similar issue to the Eset NOD32 file processing issue and nearly a dozen such vulnerabilities recently. We believe that this trend will continue for some time.
Source: http://secunia.com/advisories/26171/

NOD32 Antivirus Multiple File Processing Vulnerabilities
Severity: High Severity
Published: July 23, 2007
Eset NOD32 antivirus is vulnerable to file processing vulnerabilities that could be abused by a remote attacker to compromise a system. The AV software has problems processing CAB, ASPack, and FSG packed files. Malformed files could be sent to a victim to be processed by NOD32 and then run arbitrary code on the server. Eset has issued updated software to address this issue.
Analysis: This is another AV vulnerability in handling files. We do not expect it to be the last one, in this package or any other AV package.
Source: http://secunia.com/advisories/26124/

.

This post has been edited by AplusWebMaster: Jul 4 2009, 08:03 AM
Go to the top of the page
 
+Quote Post

Posts in this topic
- AplusWebMaster   Multiple AV vendor vulns / updates / issues   Jul 24 2007, 04:18 AM
- - AplusWebMaster   FYI... CA AV and other multiple products vuln - u...   Jul 25 2007, 11:18 AM
- - AplusWebMaster   FYI... ClamAV multiple vulns - update available -...   Aug 22 2007, 11:50 AM
- - AplusWebMaster   FYI... Sophos AV vuln - update available - http:/...   Aug 24 2007, 07:48 AM
- - AplusWebMaster   FYI... Sophos AV vuln - updates available - http:...   Sep 7 2007, 05:47 AM
- - AplusWebMaster   FYI... AOL AV changes... - http://isc.sans.org/d...   Sep 8 2007, 05:17 AM
- - AplusWebMaster   FYI... Kaspersky AV DoS vuln - update 11.2007 - h...   Sep 26 2007, 06:33 AM
- - AplusWebMaster   FYI... Kaspersky Online Scanner ActiveX Vuln - ht...   Oct 11 2007, 04:02 AM
- - AplusWebMaster   FYI... BitDefender Online Scanner ActiveX vuln - ...   Nov 21 2007, 05:49 AM
- - AplusWebMaster   FYI... avast! vuln - update available - http:...   Dec 5 2007, 10:08 AM
- - AplusWebMaster   FYI... Trend Micro AV plus AS 2008, Internet Secu...   Dec 12 2007, 05:54 AM
- - AplusWebMaster   FYI... Clam AV vuln - update available - http://s...   Dec 19 2007, 07:56 AM
- - AplusWebMaster   FYI... - http://www.heise-security.co.uk/articles...   Dec 21 2007, 11:24 AM
- - AplusWebMaster   FYI... McAfee E-Business Svr vuln - update availa...   Jan 10 2008, 04:54 AM
- - AplusWebMaster   FYI... ClamAV multiple vulns - update available -...   Feb 13 2008, 10:23 PM
- - AplusWebMaster   FYI... F-Secure vuln - hotfix available - http://...   Feb 19 2008, 12:05 PM
- - AplusWebMaster   FYI... Symantec RAR File vulns - updates availabl...   Feb 27 2008, 05:49 AM
- - AplusWebMaster   FYI... Panda vuln - updates available - http://s...   Mar 10 2008, 11:15 AM
- - AplusWebMaster   FYI... F-Secure Security Advisory FSC-2008-2 - ht...   Mar 17 2008, 11:01 AM
- - AplusWebMaster   FYI... CA Alert Notification Server service - htt...   Apr 4 2008, 08:38 PM
- - AplusWebMaster   FYI... ClamAV vuln - http://secunia.com/advisorie...   Apr 14 2008, 08:19 AM
- - AplusWebMaster   FYI... ClamAV multiple vulns - update available -...   Apr 15 2008, 04:46 AM
- - AplusWebMaster   FYI... ClamAV vuln - update available - http://se...   Jun 17 2008, 04:49 AM
- - AplusWebMaster   Backtrack... - http://atlas.arbor.net/briefs/inde...   Jun 21 2008, 10:32 AM
- - AplusWebMaster   FYI... Panda ActiveScan vulns - update available ...   Jul 7 2008, 06:22 AM
- - AplusWebMaster   FYI... Sophos DoS vuln - update available - http:...   Jul 21 2008, 03:04 PM
- - AplusWebMaster   FYI... ClamAV vuln - update available - http://se...   Jul 29 2008, 07:34 PM
- - AplusWebMaster   FYI... AVG DoS vuln - update available - http://s...   Jul 30 2008, 03:28 AM
- - AplusWebMaster   FYI... Trend Micro multiple vulns - updates avail...   Sep 8 2008, 08:58 AM
- - AplusWebMaster   FYI... Trend Micro OfficeScan Server - updates av...   Sep 12 2008, 08:53 AM
- - AplusWebMaster   FYI... Trend Micro OfficeScan multiple vulns - up...   Oct 2 2008, 06:38 AM
- - AplusWebMaster   FYI... F-Secure vuln - update available - http://...   Oct 21 2008, 06:11 AM
- - AplusWebMaster   FYI... McAfee update classifies Vista component a...   Oct 21 2008, 11:00 AM
- - AplusWebMaster   FYI... Trend Micro OfficeScan vuln - update avail...   Oct 22 2008, 10:59 AM
- - AplusWebMaster   FYI... ClamAV vuln - update available - http://se...   Nov 10 2008, 06:54 AM
- - AplusWebMaster   FYI... ClamAV vuln - update available - http://se...   Dec 2 2008, 05:03 AM
- - AplusWebMaster   FYI... ESET Smart Security vuln - update availabl...   Dec 19 2008, 08:30 AM
- - AplusWebMaster   FYI... Sophos AV vuln - update available - http:/...   Dec 20 2008, 08:31 AM
- - AplusWebMaster   FYI... Trend Micro HouseCall ActiveX vuln - updat...   Dec 22 2008, 05:03 AM
- - AplusWebMaster   FYI... Avira Antivir vuln - update available - ht...   Jan 15 2009, 08:54 AM
- - AplusWebMaster   FYI... F-Secure Anti-Virus Client Security hotfix...   Feb 23 2009, 05:18 AM
- - AplusWebMaster   FYI... ClamAV multiple vulns - update available -...   Apr 3 2009, 04:30 AM
- - AplusWebMaster   FYI... Symantec Alert Management System 2 multipl...   Apr 29 2009, 06:18 AM
- - AplusWebMaster   FYI... McAfee Security Bulletin - VirusScan Engin...   Apr 30 2009, 02:33 PM
- - AplusWebMaster   FYI... F-Secure ZIP and RAR archives vulns - http...   May 7 2009, 05:50 AM
- - AplusWebMaster   FYI... AVG 8.5 vuln - updates available - http://...   May 26 2009, 11:55 AM
- - AplusWebMaster   FYI... McAfee false positive... - http://www.ther...   Jun 10 2009, 05:33 AM
- - AplusWebMaster   FYI... F-secure - Mail relay vuln - update availa...   Jun 16 2009, 05:54 AM
- - AplusWebMaster   FYI... ClamAV CAB/RAR/ZIP vuln - update available...   Jun 19 2009, 04:59 AM
- - AplusWebMaster   FYI... McAfee false-positive glitch... - http://w...   Jul 4 2009, 07:53 AM
- - AplusWebMaster   FYI... CA - false positive - http://www.theregist...   Jul 10 2009, 06:33 AM
- - AplusWebMaster   FYI... Kaspersky Anti-Virus / Kaspersky Internet ...   Jul 24 2009, 08:56 AM
- - AplusWebMaster   FYI... Sophos SAVScan vuln - updates available - ...   Aug 12 2009, 05:33 AM
- - AplusWebMaster   FYI... CA false positives... - http://www.dynamoo...   Aug 12 2009, 07:51 PM
- - AplusWebMaster   FYI... Symantec SYM09-010 - Symantec Products Key...   Aug 26 2009, 04:21 AM
- - AplusWebMaster   FYI... avast! vuln - update available - http:...   Sep 25 2009, 08:30 AM
- - AplusWebMaster   FYI... CA Anti-Virus Engine - CA20091008-01 - htt...   Oct 21 2009, 01:37 PM
- - AplusWebMaster   FYI... F-Secure PDF handling vuln - update availa...   Oct 29 2009, 08:05 AM
- - AplusWebMaster   FYI... Panda vuln - update available - http://sec...   Nov 13 2009, 12:23 PM
- - AplusWebMaster   FYI... Kaspersky AV vuln - update available - htt...   Nov 18 2009, 08:08 AM
- - AplusWebMaster   FYI... ClamAV v0.95.3 released - http://www.clama...   Nov 19 2009, 02:10 PM
- - AplusWebMaster   FYI... Avast false positives - fix released - htt...   Dec 3 2009, 07:15 AM
- - AplusWebMaster   FYI... Kaspersky - Insecure default directory per...   Dec 17 2009, 05:57 AM
- - AplusWebMaster   FYI... AV-Comparatives rates Anti-Malware perform...   Dec 23 2009, 08:11 PM
- - AplusWebMaster   FYI... Symantec ...having 2010 date problems - ht...   Jan 4 2010, 02:58 PM
- - AplusWebMaster   FYI... F-secure - false alarm in show_ads.js - ht...   Jan 25 2010, 05:43 PM
- - AplusWebMaster   FYI... Kaspersky - false positive - http://www.th...   Jan 26 2010, 08:31 AM
- - AplusWebMaster   FYI... Symantec false positives... - http://isc.s...   Jan 28 2010, 04:49 PM
- - AplusWebMaster   FYI... avast! vuln - updates available - http...   Feb 23 2010, 02:06 PM
- - AplusWebMaster   FYI... CA Service Desk Tomcat CSS vuln - workarou...   Feb 24 2010, 04:09 PM

« Next Oldest · Security advisories and vulnerabilities info · Next Newest »
 

Reply to this topicStart new topic

 
RSS Time is now: 12th March 2010 - 06:53 PM
Advertisements do not imply our endorsement of that product or service. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk.
Member site: Alliance of Security Analysis Professionals | UNITE Against Malware
Memory Forums | Auto Repair Forum
© Geeks to Go, Inc. | All Rights Reserved | Privacy Policy
Powered By IP.Board © 2010  IPS, Inc.