-
March 18th, 2005, 12:05 AM
#1
Another antivirus software flaw detected
For the fifth time in two months, security researchers have publicized a serious flaw in a widely used virus-scanning program.
The vulnerability affects McAfee's Antivirus Library, a collection of common code shared among the security software company's various virus scanners, including GroupShield for mail servers and VirusScan for PCs. An attacker could use the flaw to cause a vulnerable system to run a file instead of scanning it for malicious code.
While the company just learned of the issue recently, an update offered to corporate customers in November and consumers in December added security measures that fixed the problem.
"Once the update was released, all current subscribers got the fix," said Mark Solomon, senior product manager for McAfee. "For anyone who is no longer a subscriber, this is a reminder to renew."
The flaw is the fourth antivirus security vulnerability found by Internet Security Systems, which sells software and hardware to protect networks and corporate PCs. The company also has found flaws in the antivirus libraries developed by security software companies Symantec, F-Secure and Trend Micro. Another flaw in Computer Associates International's antivirus software was discovered by security firm eEye Digital Security.
Internet Security Systems would not specify how the problems were found, but a representative stressed that the company didn't target the products.
Users of McAfee's virus scanning software, also known as an engine, are vulnerable only if the software has not been updated through a current subscription and the person has not downloaded the latest virus definitions file, or DAT, from the company.
The flaw could be exploited using any type of network traffic that is scanned by a McAfee product, including e-mail, Web browsing and Windows file sharing. When the vulnerable software attempted to open a malicious file, the software would instead run the program included in the file.
Source : http://news.zdnet.com/2100-1009_22-5623844.html
-
March 18th, 2005, 12:20 AM
#2
"Once the update was released, all current subscribers got the fix," said Mark Solomon, senior product manager for McAfee. "For anyone who is no longer a subscriber, this is a reminder to renew."
This reminds me of the "M$/Symantec/[Insert offender here]" complaints that paying customers are getting preferential treatment.... Well.... No poopie doop... they _pay_ for someone elses work.... Don't get me wrong.. I love free stuff that does _exactly_ and _only_ what it says it does....
The failure here is a marketing issue.... That last phrase comes across like a threat....
Funnily enough people get all "wild" when NT4 patches aren't available to anyone who didn't pay for the extended support contract. How many people will uninstall MacAfee and buy a decent product?
Don\'t SYN us.... We\'ll SYN you.....
\"A nation that draws too broad a difference between its scholars and its warriors will have its thinking done by cowards, and its fighting done by fools.\" - Thucydides
-
March 18th, 2005, 12:26 AM
#3
How many people will uninstall MacAfee and buy a decent product?
Sadly, not enough of them. (Includes the Norton folks too.)
ZT3000
Beta tester of "0"s and "1"s"
-
March 18th, 2005, 01:08 AM
#4
I know a -GREAT- antivirus with very few flaws...I call it common sense.
-
March 18th, 2005, 01:33 AM
#5
Hi XTC46 ,
"Common Sense" can be a good Patch to a decent AV, each one of them can't work saperately, that's WHY we find so many people do not update thier AV "Here the Common Sense is absenced".
How many people will uninstall MacAfee and buy a decent product?
Not all people understant what goes on and what news brought... I still think that they will have enough customers to make thier business make unbelievable return {Profit}.
Cheers,,,
\"The only truly secure system is one that is powered off, cast in a block of concrete and sealed in a lead-lined room with armed guards - and even then I have my doubts\".....Spaf
Everytime I learn a new thing, I discover how ignorant I am.- ... Black Cluster
-
March 18th, 2005, 01:51 AM
#6
Originally posted here by Tiger Shark
The failure here is a marketing issue.... That last phrase comes across like a threat....
Hey, Tiger. Do you remember back in the days of the Michaelangelo virus scare and McAfee beating his chest and saying his was the only AV capable of saving the world .... or something like that. Seems the company line is still the same.
-
March 18th, 2005, 02:07 AM
#7
He doesn't live too far from where I do, last I head...a couple hour drive maybe. We should go on a road trip and ask him when the world will finally be saved.
Haha, michaelangelo...hadn't thought of that one in a lo-o-ong time.
I've seen more than one person claim common sense is 'AV protection enough' for them. Sorry, you're wrong. I know we are talking about antivirus software which infers Virus, and there is a technical distinction between Virus, Worm, Trojan horse, and the other malware types... But most AV engines will catch worm signatures, trojans, etc. Common sense might be good enough for certain individuals in this community, but it is NOT good enough for 95% of computer users in our connected world.
The level of effort and knowledge required to secure your system to be 'virus proof' is beyond most peoples abilities or desire. I could probably take a decent shot at it myself...but I have better things to spend my time on. Especially when you can get rock solid, low overhead programs like AVG or ezAv for free.
"Data is not necessarily information. Information does not necessarily lead to knowledge. And knowledge is not always sufficient to discover truth and breed wisdom." --Spaf
Anyone who is capable of getting themselves made president should on no account be allowed to do the job. --Douglas Adams (1952-2001)
"...people find it far easier to forgive others for being wrong than being right." - Albus Percival Wulfric Brian Dumbledore
-
March 18th, 2005, 02:31 AM
#8
Originally posted here by XTC46
I know a -GREAT- antivirus with very few flaws...I call it common sense.
If thats anyting like my spidey sense... I'm in BIG trouble...
Quitmzilla is a firefox extension that gives you stats on how long you have quit smoking, how much money you\'ve saved, how much you haven\'t smoked and recent milestones. Very helpful for people who quit smoking and used to smoke at their computers... Helps out with the urges.
-
March 18th, 2005, 04:03 AM
#9
heh, this reminds me of a very recent discussion that me, xeriox, and the specialist had, it can be found here:
http://www.antionline.com/showthread...hreadid=266870
The level of effort and knowledge required to secure your system to be 'virus proof' is beyond most peoples abilities or desire. I could probably take a decent shot at it myself...but I have better things to spend my time on. Especially when you can get rock solid, low overhead programs like AVG or ezAv for free.
don't forget about avast! .
-
March 18th, 2005, 11:23 AM
#10
Banned
what about clamAV?. Is that even any good?
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
|