Vulnerability found in Kaspersky AV

Kaspersky Labs on Tuesday confirmed that its anti-virus scanning engine was flawed, and said it was working on a fix. The Moscow-based security vendor also said a stop-gap measure, signatures for its software that will detect possible exploits, is already in place.

Monday, a researcher known for spotting bugs in security software disclosed one in Kaspersky’s AV engine that could be used by attackers to grab complete control of a PC protected by the company’s Windows products.

Kaspersky’s scanning engine can be tricked by malformed .cab files — a format used by Microsoft to hold compressed files on distribution disks and PCs — into causing a heap overflow, said Alex Wheeler.

Kaspersky claims to have added detection to its updates on Sept 29 and priomise a fix by the end of Oct 5

http://www.kaspersky.com/news?id=171512144


Leave a Reply

Your email address will not be published. Required fields are marked *

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>