News

Security Flaw in Kaspersky Antivirus

By Nate Mook | Published October 4, 2005, 3:20 PM

UPDATED A security researcher has uncovered a critical security flaw in Kaspersky Anti-Virus that could allow an attacker to take control of a vulnerable system. The problem lies in a component used to open CAB files, which can be exploited using a buffer overflow.

According to an advisory issued by Alex Wheeler, a malformed CAB file could be sent via e-mail, and when opened by Kaspersky Antivirus for processing the PC could be compromised.

Security firm Secunia has rated the flaw "Highly Critical" and notes that other Kaspersky software may also be vulnerable due to the component being reused across multiple products.

In a statement on its Web site, Kaspersky acknowledged the existence of the flaw but downplayed the potential risk to end users.

"The actual threat posed by the CAB vulnerability is minimal and cannot affect the level of antivirus protection provided by Kaspersky Lab products," the company said.

Nonetheless, Kaspersky has worked quickly to resolve the problem. Antivirus definitions released on September 29 onward include a check for such an attack. The company has also completed on an emergency update to its product line to fix the affected CAB module.

The new version of Kaspersky Anti-Virus is available for download via FileForum.

Comments

View comments by with a score of at least

kronix2
Oct 6, 2005 - 5:35 AM

It took them one day to update their application modules, and hours to issue updated virus definitions. If only all security flaws were dealt with so speedily.

Score: 0

|
Post Reply
jordenpro
Oct 5, 2005 - 10:56 AM

This is exactly why Kaspersky is the best Anti-Virus around. A flaw like this is discovered, they quickly explain and release a solution also noting that no PoC has been released on this flaw.

I trust Kaspersky for my AntiVirus needs because they are the best.

Score: 0

|
Post Reply
beta_animal
Oct 4, 2005 - 6:11 PM

http://www.kaspersky.com/news?id=171512144

Wouldn't it be nice if Microsoft "Highly Critical" vulnerabilities were dealt with this quickly? Reported October 4. New virus definitions released October 4.

Score: 0

|
Post Reply
JSDvs9172
Oct 4, 2005 - 8:23 PM edited

Very true. However you have to remember that frequent updates did cause confusion for customers in Microsoft's case, hence we got "Patch Tuesday." But aside from that, who knows? (Although the delay does provide for adequate "quality-check time," and Microsoft DOES break cycle on patches if it's an emergency...)

Score: 0

|
Post Reply

Bing gets geekier with new Wolfram Alpha integration

Microsoft's Bing is now teamed up with Wolfram Alpha for computational search results.

HP to acquire 3Com for $2.7 B in cash, focus on China

A long and uncertain comeback trail comes to an end for the one-time network equipment giant.

Universities reject Kindle DX as a textbook replacement

Two universities running Kindle DX pilot programs have rejected the device.

Snow Leopard and Windows 7 still can't crack the netbook problem

Apple has killed Atom support in OS X 10.6.2 and Windows 7 Starter Edition is stripped of "basic" functionality.

Facebook for iPhone developer goes from Apple supporter to 'I quit!' in 3 months

Fed up with Apple's App Store policies, the developer of Facebook for iPhone has bailed on the iPhone.

Bing vs. Google rematch on video search

After Microsoft folds some old MSN Video features back into Bing, do they add to the search engine's functionality or take away?

New EU telecoms framework mandates user consent before getting cookies

Do you want a cookie? No. Do you want a cookie? No. Do you want a cookie? No. Do you want...Are you annoyed yet? That's a preview of 2011.

The Samsung Intrepid: A nice phone, if you can accept Windows Mobile

Samsung appears to have built solid enough hardware, but it's the software that seems uncomfortable and unintuitive.

A real beta process at work: Mozilla fires up Firefox 3.6 Beta 2

In the clearest sign yet that public input really does help the development process, a flurry of bug detections provoked Mozilla to release Beta 2 of the next Firefox.

Kindle for PC opens in beta, underwhelms

Amazon has opened the beta of Kindle for PC, a companion to the Kindle, but little else.

European ministers approve watered-down 'neutral net' language

The latest provision in the EU's telecoms regulatory framework would let businesses cancel individuals' Internet access, if they go to court first.