You are here: silicon.com > Software > Security Strategy

Security Strategy

Flaw mars Kaspersky antivirus software

From Russia with bug

Tags: kaspersky labs, antivirus

By Joris Evers

Published: 4 October 2005 08:30 BST

A "critical" flaw in Kaspersky Labs' antivirus software could let an attacker commandeer systems that use the products, a security researcher warned on Monday.

The problem lies in Kaspersky's antivirus library, security researcher Alex Wheeler wrote in an advisory. The vulnerability is likely to affect multiple Kaspersky products on various platforms because the library is used throughout the company's consumer and corporate software, he said.

Additionally, third-party products that use Kaspersky's antivirus technology could also be vulnerable, Wheeler said.

A remote attacker could exploit the heap overflow flaw by sending a malformed CAB file - a compression file - to a vulnerable system, the French Security Incident Response Team (FrSirt) said in an advisory. The CAB file could be sent in an email, for example, and once the Kaspersky antivirus scanner had accepted it, the malicious code would be in the system. No user interaction is required, Wheeler said. FrSirt describes the issue as "critical", its highest rating.

A representative for Kaspersky in Moscow could not immediately comment on the issue and said that the Russian company would need to investigate.

Antivirus software is like low-hanging fruit to hackers, Yankee Group analysts wrote in a research paper released earlier this year. As the pool of easily exploitable security bugs in Microsoft Windows dries up, attackers are looking to security software for holes to get into systems, the analysts said.

At the Black Hat Briefings security conference this summer, researchers at Internet Security Systems outlined vulnerabilities in antivirus products. ISS has discovered bugs in products from security software makers including F-Secure, McAfee, Symantec and Trend Micro.

Joris Evers writes for CNET News.com

  1. Zones
  2. Management
  3. Networks
  4. Software
  5. IT Services
  6. Hardware
  1. Verticals
  2. Public Sector
  3. Financial Services
  4. Retail & Leisure

  • Jobs
.Net Analyst Developer (B2B / B2C / SEO), Cheshire, Up to 40k

Troubleshoots and repairs bugs and problems. Knowledgeable of core Microsoft Patterns and Practices (Enterprise Library and Software Factory) ...

Junior Lotus Notes Administrator

Customer satisfaction 7D1 - Lotus Domino V7 Application Development Foundation IT Infrastructure Library (ITIL) Foundations We are currently looking ...

Senior Microsoft Windows Server Engineer

Pocket Kings is seeking a Senior Microsoft Windows Server Engineer to work with our existing Windows Server team. Our company is the exclusive ...

Agenda Setters 2008
Welcome to the ninth annual Agenda Setters poll – silicon.com's list of the top 50 most influential individuals in the technology and IT industries, from techies and CIOs to entrepreneurs and business leaders. Find out more in our latest special report.





Quick Sitemap Links: