Vulnerability found in Kaspersky AV

Kaspersky Labs on Tuesday confirmed that its anti-virus scanning engine was flawed, and said it was working on a fix. The Moscow-based security vendor also said a stop-gap measure, signatures for its software that will detect possible exploits, is already in place.

Monday, a researcher known for spotting bugs in security software disclosed one in Kaspersky’s AV engine that could be used by attackers to grab complete control of a PC protected by the company’s Windows products.

Kaspersky’s scanning engine can be tricked by malformed .cab files — a format used by Microsoft to hold compressed files on distribution disks and PCs — into causing a heap overflow, said Alex Wheeler.

Kaspersky claims to have added detection to its updates on Sept 29 and priomise a fix by the end of Oct 5

Leave a Reply

Your email address will not be published. Required fields are marked *