Another antivirus software flaw detected
Results 1 to 10 of 10

Thread: Another antivirus software flaw detected

  1. #1
    AO French Antique News Whore
    Join Date
    Aug 2001
    Posts
    2,126

    Another antivirus software flaw detected

    For the fifth time in two months, security researchers have publicized a serious flaw in a widely used virus-scanning program.

    The vulnerability affects McAfee's Antivirus Library, a collection of common code shared among the security software company's various virus scanners, including GroupShield for mail servers and VirusScan for PCs. An attacker could use the flaw to cause a vulnerable system to run a file instead of scanning it for malicious code.

    While the company just learned of the issue recently, an update offered to corporate customers in November and consumers in December added security measures that fixed the problem.

    "Once the update was released, all current subscribers got the fix," said Mark Solomon, senior product manager for McAfee. "For anyone who is no longer a subscriber, this is a reminder to renew."

    The flaw is the fourth antivirus security vulnerability found by Internet Security Systems, which sells software and hardware to protect networks and corporate PCs. The company also has found flaws in the antivirus libraries developed by security software companies Symantec, F-Secure and Trend Micro. Another flaw in Computer Associates International's antivirus software was discovered by security firm eEye Digital Security.

    Internet Security Systems would not specify how the problems were found, but a representative stressed that the company didn't target the products.

    Users of McAfee's virus scanning software, also known as an engine, are vulnerable only if the software has not been updated through a current subscription and the person has not downloaded the latest virus definitions file, or DAT, from the company.

    The flaw could be exploited using any type of network traffic that is scanned by a McAfee product, including e-mail, Web browsing and Windows file sharing. When the vulnerable software attempted to open a malicious file, the software would instead run the program included in the file.
    Source : http://news.zdnet.com/2100-1009_22-5623844.html
    -Simon \"SDK\"

  2. #2
    AO Ancient: Team Leader
    Join Date
    Oct 2002
    Posts
    5,197
    "Once the update was released, all current subscribers got the fix," said Mark Solomon, senior product manager for McAfee. "For anyone who is no longer a subscriber, this is a reminder to renew."
    This reminds me of the "M$/Symantec/[Insert offender here]" complaints that paying customers are getting preferential treatment.... Well.... No poopie doop... they _pay_ for someone elses work.... Don't get me wrong.. I love free stuff that does _exactly_ and _only_ what it says it does....

    The failure here is a marketing issue.... That last phrase comes across like a threat....

    Funnily enough people get all "wild" when NT4 patches aren't available to anyone who didn't pay for the extended support contract. How many people will uninstall MacAfee and buy a decent product?
    Don\'t SYN us.... We\'ll SYN you.....
    \"A nation that draws too broad a difference between its scholars and its warriors will have its thinking done by cowards, and its fighting done by fools.\" - Thucydides

  3. #3
    Senior Member
    Join Date
    Mar 2005
    Posts
    400

    Exclamation

    How many people will uninstall MacAfee and buy a decent product?
    Sadly, not enough of them. (Includes the Norton folks too.)
    ZT3000
    Beta tester of "0"s and "1"s"

  4. #4
    Senior Member
    Join Date
    May 2003
    Posts
    1,199
    I know a -GREAT- antivirus with very few flaws...I call it common sense.
    Everyone is going to die, I am just as good of a reason as any.

    http://think-smarter.blogspot.com

  5. #5
    In And Above Man Black Cluster's Avatar
    Join Date
    Feb 2005
    Posts
    912
    Hi XTC46 ,

    "Common Sense" can be a good Patch to a decent AV, each one of them can't work saperately, that's WHY we find so many people do not update thier AV "Here the Common Sense is absenced".

    How many people will uninstall MacAfee and buy a decent product?
    Not all people understant what goes on and what news brought... I still think that they will have enough customers to make thier business make unbelievable return {Profit}.

    Cheers,,,
    \"The only truly secure system is one that is powered off, cast in a block of concrete and sealed in a lead-lined room with armed guards - and even then I have my doubts\".....Spaf
    Everytime I learn a new thing, I discover how ignorant I am.- ... Black Cluster

  6. #6
    Banned
    Join Date
    Apr 2003
    Posts
    1,147
    Originally posted here by Tiger Shark
    The failure here is a marketing issue.... That last phrase comes across like a threat....
    Hey, Tiger. Do you remember back in the days of the Michaelangelo virus scare and McAfee beating his chest and saying his was the only AV capable of saving the world .... or something like that. Seems the company line is still the same.

  7. #7
    AO Senior Cow-beller
    Moderator
    zencoder's Avatar
    Join Date
    Dec 2004
    Location
    Mountain standard tribe.
    Posts
    1,177
    He doesn't live too far from where I do, last I head...a couple hour drive maybe. We should go on a road trip and ask him when the world will finally be saved.

    Haha, michaelangelo...hadn't thought of that one in a lo-o-ong time.

    I've seen more than one person claim common sense is 'AV protection enough' for them. Sorry, you're wrong. I know we are talking about antivirus software which infers Virus, and there is a technical distinction between Virus, Worm, Trojan horse, and the other malware types... But most AV engines will catch worm signatures, trojans, etc. Common sense might be good enough for certain individuals in this community, but it is NOT good enough for 95% of computer users in our connected world.

    The level of effort and knowledge required to secure your system to be 'virus proof' is beyond most peoples abilities or desire. I could probably take a decent shot at it myself...but I have better things to spend my time on. Especially when you can get rock solid, low overhead programs like AVG or ezAv for free.
    "Data is not necessarily information. Information does not necessarily lead to knowledge. And knowledge is not always sufficient to discover truth and breed wisdom." --Spaf
    Anyone who is capable of getting themselves made president should on no account be allowed to do the job. --Douglas Adams (1952-2001)
    "...people find it far easier to forgive others for being wrong than being right." - Albus Percival Wulfric Brian Dumbledore

  8. #8
    AO übergeek phishphreek's Avatar
    Join Date
    Jan 2002
    Posts
    4,324
    Originally posted here by XTC46
    I know a -GREAT- antivirus with very few flaws...I call it common sense.
    If thats anyting like my spidey sense... I'm in BIG trouble...
    Quitmzilla is a firefox extension that gives you stats on how long you have quit smoking, how much money you\'ve saved, how much you haven\'t smoked and recent milestones. Very helpful for people who quit smoking and used to smoke at their computers... Helps out with the urges.

  9. #9
    AFLAAACKKK!!
    Join Date
    Apr 2004
    Posts
    1,065
    heh, this reminds me of a very recent discussion that me, xeriox, and the specialist had, it can be found here:

    http://www.antionline.com/showthread...hreadid=266870

    The level of effort and knowledge required to secure your system to be 'virus proof' is beyond most peoples abilities or desire. I could probably take a decent shot at it myself...but I have better things to spend my time on. Especially when you can get rock solid, low overhead programs like AVG or ezAv for free.
    don't forget about avast! .
    I am the uber duck!!1
    Proxy Tools

  10. #10

    Question

    what about clamAV?. Is that even any good?

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

 Security News

     Patches

       Security Trends

         How-To

           Buying Guides