You are here: silicon.com > Software > Security Strategy

Security Strategy

Cyber attack flaw blights antivirus engine

CA takes aim at "high risk" bug

Tags: cyber attack, cyber attack flaw, bug, antivirus

By Joris Evers

Published: 24 May 2005 08:35 GMT

A high-risk security flaw in several of Computer Associates International's antivirus products could put users at risk of cyber attack, the software vendor warned on Monday.

The flaw lies in the scanning engine used in CA's enterprise and consumer antivirus products, the company said. An attacker could gain full control over a victim's PC by sending a specially crafted Microsoft Office document, according to a security advisory published on the CA website.

CA rates the issue "high risk" because an attacker can gain full access to a computer without any user interaction.

The flaw in CA's antivirus engine is the latest in a series of security bugs in antivirus software. During the past few months, problems have been found in products from F-Secure, McAfee, Symantec and Trend Micro.

Consumer products that contain the flawed engine include CA's eTrust EZ Antivirus and EZ Armor, a bundle that offers the antivirus product. Affected business products include eTrust Antivirus, Intrusion Detection and Secure Content Manager, according to the advisory.

Sam Curry, a vice president at CA in Islandia, New York, said the company publicly disclosed the security issue on Monday but had a patch available on 3 May.

The patch was made available to corporate customers, Curry said. "The consumer products are automatically being updated today," he said. CA counts between three million and four million consumers and about one million organisations as its antivirus customers, he said.

Consumers who are on more recent versions of EZ Antivirus and EZ Armor may find their products have already been automatically updated, CA said. Users should check if the antivirus engine in their product is version 11.9.1. If it is a lower number, a virus signature update should be done to get the patch, according to CA.

Users of older versions are advised to upgrade or follow the guidelines in CA's advisory.

CA is not aware of anyone actually using the latest vulnerability in its products to attack users, Curry said. "This vulnerability is still only a potential vulnerability. There are no known exploits in the wild yet," he said. "However, I would say it is only a matter of time."

Joris Evers writes for CNET News.com

  1. Zones
  2. Management
  3. Networks
  4. Software
  5. IT Services
  6. Hardware
  1. Verticals
  2. Public Sector
  3. Financial Services
  4. Retail & Leisure

Clive Longbottom Windows 7: Not perfect - but ready for prime time Microsoft's latest OS fixes most of Vista's ills - but still has challenges ahead

Stephen Kleynhans Mind the details with Windows 7 Just because it might work better than Vista, it doesn't mean you can be sloppy


  • Jobs
Security Operations Centre Manager (SOC Manager), SC Security Cleared

Basic awareness of computer based vulnerability analysis testing. Moderate awareness of computer based vulnerability analysis testing. Basic ...

CHECK Team Leader

Responsibilities / Duties + To undertake Technical Health/Vulnerability Tests, individually or as part of a team. Check Team Leader - UK based CHECK ...

2nd Level Support Analyst

Symantec Antivirus Enterprise Edition or Endpoint protection We are a leading provider of IT Support and Consultancy services to the SME market. ...

Agenda Setters 2009
Welcome to the ninth annual Agenda Setters poll – silicon.com's list of the top 50 most influential individuals in the technology and IT industries, from techies and CIOs to entrepreneurs and business leaders. Find out more in our latest special report.





Quick Sitemap Links: