You are here: silicon.com > Software > Security Strategy

Security Strategy

Sophos' flagship product is flawed

Antivirus software vulnerable to attack...

Tags: sophos, antivirus

Printer Friendly Email Story RSS

By Michael Kanellos

Published: 29 July 2005 09:45 GMT

Sophos has announced a flaw in its flagship antivirus product but said it is working on fixes.

The Abingdon, England-based company said that Sophos Anti-Virus can potentially be attacked by a buffer overflow, which knocks out a program by flooding it with data. A patch has already been created for Sophos Antivirus 4.5.4 and for most versions of Sophos Antivirus 3.96.0. An update for Sophos Anti-Virus Small Business Edition will be released on Friday, and all other versions will be fixed within two weeks, the antivirus maker said.

According to the company advisory: "Although theoretically a risk, Sophos has not seen any examples of malware attempting to exploit this vulnerability."

The flaw was discovered by Alex Wheeler, the company stated. Earlier in the week, Neel Mehta of Internet Security Systems in Atlanta, said he and Wheeler would hold a session at the Black Hat security conference this week in Las Vegas to outline how antivirus programs could increasingly become targets for hackers because of latent flaws.

In the past year, ISS has discovered bugs in products from security software makers F-Secure, McAfee, Symantec and Trend Micro, he noted. Earlier this week, several flaws discovered by ISS were disclosed and fixed in Clam Antivirus, a popular open source virus scanner.

Michael Kanellos writes for CNET News.com

Add Comment Add comment  Printer Friendly Print story with   Email Story Email story  
In
Applications

Operating Systems

SOA/Web Services

Malware

Security Strategy


Related Links

Beware of the cyber crime boom

Microsoft: 'State of security is improving'

Virus-infected PC leaks nuclear secrets

Leader: Share your malware knowledge

The Network Box Anti-Virus Solution

  1. Zones
  2. Management
  3. Networks
  4. Software
  5. IT Services
  6. Hardware
  1. Verticals
  2. Public Sector
  3. Financial Services
  4. Retail & Leisure

Bob Tarzey Why you must rein in your power users When they do damage, it can be catastrophic to your business

Jon Collins Is losing a mobile device really such a big deal? How to minimise the damage to your business

UK ID cards rollout hit by delay as launch date revealed

Bletchley Park's World War Two codebreakers in their own words

'You're responsible for your own wi-fi security' say ISPs

'UK must up privacy safeguards following Phorm'

The top 10 technologies you need to plan for next year


  • Jobs
Technical Consultant / Field Support Engineer Oxford, Oxfordshire

Any knowledge of Sophos Anti-Virus and Veritas Backup Exec is advantageous. Technical Consultant / Field Support Engineer is required by leading UK ...

Network Security Engineer

Knowledge of Microsoft Internet and Acceleration (ISA) Server 2006, Sophos Anti virus for Unix and Netscreen ScreenOS is required.Ideally you will be ...

Desktop /Network Support

Working experience with enterprise anti-virus systems such as Sophos, Trend, McAfee Proven experience of managing Unified Threat Management system ...

Agenda Setters 2009
Welcome to the ninth annual Agenda Setters poll – silicon.com's list of the top 50 most influential individuals in the technology and IT industries, from techies and CIOs to entrepreneurs and business leaders. Find out more in our latest special report.

JD Edwards Spotlight Video

CEO Dashboard Management: Why Creating Visual Reports You Can't Hide From Will Help...

Virtual Private Servers (VPS)

Looking for a fast payback? 10 Minutes with Free Tool Can Save Thousands

Martin Brokers cashes in on back-up swap

VocaLink makes virtualisation pay

Sony Pictures sets sights on best IT Oscar

Co-op Group kicks "server sprawl" into touch

Arts Council gets tech troubleshooting boost

Torex tech treats Thorntons to quicker sales

Stories from the web...


eBay app lets users bid from a BlackBerry

ID card database: 500 names added in first month

Women in IT: Tech has an image problem

Tesco Mobile to get a taste of Apple's iPhone

Marketing chiefs: Are you spamming your customers?

IT skills shortage squashed by recession?




Quick Sitemap Links: