Home News Forum Articles
  Welcome back Join CF
You are here You are here: Home | Forum | 14 antivirus apps found to have security problems

You are currently viewing our boards as a guest which gives you limited access to view most of the discussions, articles and other free features. By joining our Virgin Media community you will have full access to all discussions, be able to view and post threads, communicate privately with other members (PM), respond to polls, upload your own images/photos, and access many other special features. Registration is fast, simple and absolutely free so please join our community today.


Welcome to Cable Forum
Go Back   Cable Forum > Computers & IT > Security & Virus Discussion
Reload this Page 14 antivirus apps found to have security problems
Register FAQ Community Calendar

14 antivirus apps found to have security problems
Reply
 
Thread Tools
Old 29-07-2014, 15:08   #1
Qtx
CF's Worst Nightmare
 
Join Date: May 2012
Location: Probably outside the M25
Services: Sky Fibre Unlimited 40/10
Posts: 3,473
Qtx has a bronzed appealQtx has a bronzed appeal
Qtx has a bronzed appealQtx has a bronzed appealQtx has a bronzed appealQtx has a bronzed appealQtx has a bronzed appealQtx has a bronzed appealQtx has a bronzed appealQtx has a bronzed appealQtx has a bronzed appealQtx has a bronzed appealQtx has a bronzed appealQtx has a bronzed appealQtx has a bronzed appealQtx has a bronzed appealQtx has a bronzed appealQtx has a bronzed appealQtx has a bronzed appealQtx has a bronzed appealQtx has a bronzed appealQtx has a bronzed appeal
14 antivirus apps found to have security problems
Quote:
COSEINC is a Singapore security outfit that has run a critical eye about 17 major antivirus engines and products and found dangerous local and remotely-exploitable vulnerabilities in 14.

Koret's analysis also suggests that antivirus companies fail by requiring overly extensive privileges, not signing product updates and delivering those over insecure HTTP, running excessive old code and not conducting proper source code reviews and fuzzing.
http://www.theregister.co.uk/2014/07..._audit_or_die/

Most of the report is stating what should be obvious to security bods. Kudos for finding the RCE's though. Expect AV patches soon.
Qtx is offline   Reply With Quote
Advertisement
Old 29-07-2014, 15:55   #2
joglynne
Born again teenager.
 
joglynne's Avatar
 
Join Date: Feb 2007
Location: Manchester. (VM area 20)
Age: 75
Services: Maxit TV, M250 Fibre BB. Phone-Anytime Chatter
Posts: 13,700
joglynne has a golden aurajoglynne has a golden aurajoglynne has a golden aura
joglynne has a golden aurajoglynne has a golden aurajoglynne has a golden aurajoglynne has a golden aurajoglynne has a golden aurajoglynne has a golden aurajoglynne has a golden aurajoglynne has a golden aurajoglynne has a golden aurajoglynne has a golden aurajoglynne has a golden aurajoglynne has a golden aurajoglynne has a golden aurajoglynne has a golden aurajoglynne has a golden aurajoglynne has a golden aurajoglynne has a golden aurajoglynne has a golden aurajoglynne has a golden aura
Re: 14 antivirus apps found to have security problems
I was wondering which other antivirus apps were mentioned as having problems and found the following pdf of Koret's presentation if anyone else is interested.

http://www.syscan360.org/slides/2014...oxeanKoret.pdf

It includes this list ...
Quote:
AV engines vulnerabilities
  • Avast: Heap overflow in RPM (reported, fixed and paid Bug Bounty)
  • Avg: Heap overflow with Cpio (fixed...)/Multiple vulnerabilities with packers
  • Avira: Multiple remote vulnerabilities
  • BitDefender: Multiple remote vulnerabilities
  • ClamAV:Infinite loop with a malformed PE (reported & fixed)
  • Comodo: Heap overflow with Chm
  • DrWeb: Multiple remote vulnerabilities (vulnerability with updating engine fixed)
  • ESET: Integer overflow with PDF (fixed)/Multiple vulnerabilities with packers
  • F-Prot: Heap overflows with multiple packers
  • F-Secure: Multiple vulnerabilities in Aqua engine (all the F-Secure own bugs fixed)
  • Panda: Multiple local privilege escalations (reported and partially fixed)
  • eScan: Multiple remote command injection (all fixed? LOL, I doubt...)
And many more...
__________________
"I intend to live forever, or die trying" - Groucho Marx..... "but whilst I do I shall do so disgracefully." Jo Glynne
joglynne is offline   Reply With Quote
Old 29-07-2014, 17:46   #3
Pbryanw
cf.addict
 
Join Date: Apr 2008
Location: N.E. Lincolnshire
Services: Plusnet Fibre Broadband, Phone & TV
Posts: 240
Pbryanw is just really nicePbryanw is just really nicePbryanw is just really nicePbryanw is just really nicePbryanw is just really nicePbryanw is just really nice
Re: 14 antivirus apps found to have security problems
Interesting report - I see that Kaspersky also came under fire in the "2 random AVs nobody uses..." section. Norton seems unaccounted for too (I alternate between this and Kaspersky), but the report seems to suggest that the way Antivirus programs work make them all vulnerable to problems.

I still think the advantages of running a security suite outweigh the negatives, but it's good that research like this is being done, fed back to the companies, and problems found and fixed.
Pbryanw is offline   Reply With Quote
Reply

« Previous Thread | Next Thread »

Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump


All times are GMT +1. The time now is 16:59.

Contact Us - Service Status - Cable Forum - Archive - Privacy Statement - Terms of Service - Top

Server: osmium.zmnt.uk
Powered by vBulletin® Version 3.8.11
Copyright ©2000 - 2024, vBulletin Solutions Inc.

Copyright © 2024 Cable Forum Hosted On Hetzner Cloud