Vulnerability found in Kaspersky AV
Kaspersky Labs on Tuesday confirmed that its anti-virus scanning engine was flawed, and said it was working on a fix. The Moscow-based security vendor also said a stop-gap measure, signatures for its software that will detect possible exploits, is already in place.
Monday, a researcher known for spotting bugs in security software disclosed one in Kaspersky’s AV engine that could be used by attackers to grab complete control of a PC protected by the company’s Windows products.
Kaspersky’s scanning engine can be tricked by malformed .cab files — a format used by Microsoft to hold compressed files on distribution disks and PCs — into causing a heap overflow, said Alex Wheeler.
Kaspersky claims to have added detection to its updates on Sept 29 and priomise a fix by the end of Oct 5