Re: 14 antivirus apps found to have security problems
I was wondering which other antivirus apps were mentioned as having problems and found the following pdf of Koret's presentation if anyone else is interested.
http://www.syscan360.org/slides/2014...oxeanKoret.pdf
It includes this list ...
Quote:
AV engines vulnerabilities- Avast: Heap overflow in RPM (reported, fixed and paid Bug Bounty)
- Avg: Heap overflow with Cpio (fixed...)/Multiple vulnerabilities with packers
- Avira: Multiple remote vulnerabilities
- BitDefender: Multiple remote vulnerabilities
- ClamAV:Infinite loop with a malformed PE (reported & fixed)
- Comodo: Heap overflow with Chm
- DrWeb: Multiple remote vulnerabilities (vulnerability with updating engine fixed)
- ESET: Integer overflow with PDF (fixed)/Multiple vulnerabilities with packers
- F-Prot: Heap overflows with multiple packers
- F-Secure: Multiple vulnerabilities in Aqua engine (all the F-Secure own bugs fixed)
- Panda: Multiple local privilege escalations (reported and partially fixed)
- eScan: Multiple remote command injection (all fixed? LOL, I doubt...)
And many more...
|
__________________
"I intend to live forever, or die trying" - Groucho Marx..... "but whilst I do I shall do so disgracefully." Jo Glynne
|