News

Security Flaw in Kaspersky Antivirus

By Nate Mook | Published October 4, 2005, 3:20 PM

UPDATED A security researcher has uncovered a critical security flaw in Kaspersky Anti-Virus that could allow an attacker to take control of a vulnerable system. The problem lies in a component used to open CAB files, which can be exploited using a buffer overflow.

According to an advisory issued by Alex Wheeler, a malformed CAB file could be sent via e-mail, and when opened by Kaspersky Antivirus for processing the PC could be compromised.

Security firm Secunia has rated the flaw "Highly Critical" and notes that other Kaspersky software may also be vulnerable due to the component being reused across multiple products.

In a statement on its Web site, Kaspersky acknowledged the existence of the flaw but downplayed the potential risk to end users.

"The actual threat posed by the CAB vulnerability is minimal and cannot affect the level of antivirus protection provided by Kaspersky Lab products," the company said.

Nonetheless, Kaspersky has worked quickly to resolve the problem. Antivirus definitions released on September 29 onward include a check for such an attack. The company has also completed on an emergency update to its product line to fix the affected CAB module.

The new version of Kaspersky Anti-Virus is available for download via FileForum.

Comments

View comments by with a score of at least

kronix2
Oct 6, 2005 - 5:35 AM

It took them one day to update their application modules, and hours to issue updated virus definitions. If only all security flaws were dealt with so speedily.

Score: 0

|
Post Reply
jordenpro
Oct 5, 2005 - 10:56 AM

This is exactly why Kaspersky is the best Anti-Virus around. A flaw like this is discovered, they quickly explain and release a solution also noting that no PoC has been released on this flaw.

I trust Kaspersky for my AntiVirus needs because they are the best.

Score: 0

|
Post Reply
beta_animal
Oct 4, 2005 - 6:11 PM

http://www.kaspersky.com/news?id=171512144

Wouldn't it be nice if Microsoft "Highly Critical" vulnerabilities were dealt with this quickly? Reported October 4. New virus definitions released October 4.

Score: 0

|
Post Reply
JSDvs9172
Oct 4, 2005 - 8:23 PM edited

Very true. However you have to remember that frequent updates did cause confusion for customers in Microsoft's case, hence we got "Patch Tuesday." But aside from that, who knows? (Although the delay does provide for adequate "quality-check time," and Microsoft DOES break cycle on patches if it's an emergency...)

Score: 0

|
Post Reply

Latest Firefox 3.6 beta fixes 133 bugs, promises faster page load times

A once-sluggish beta testing process has kicked into overdrive, with astonishing success at finding serious bugs. Will Mozilla be able to fix all the others in time?

Apple invokes DMCA, claims Psystar is 'trafficking in circumvention devices'

In trying to close the book on possibly the last attempt at a Mac clone, Apple cites from its own landmark case...but may actually be misinterpreting it.

The fallacy of Facebook privacy

Carmi Levy | Wide Angle Zoom: If an insurance company learns something interesting about its client through the Internet, is that snooping?

Microsoft 'worked with Apple' for Silverlight on iPhone, says Goldfarb

By not making such a big deal out of trying to stream video to the iPhone, Microsoft got a big deal out of it, revealed the Silverlight product manager.

Confirmed: Office 2010 to ship in June

Two weeks after Microsoft had been expected to draw a clearer roadmap for its principal applications suite, it's finally ready to commit to the end of H1.

New EU antitrust commissioner will oversee Microsoft, Oracle+Sun, Intel issues

As one of Europe's most prominent politicians shifts positions in January, her replacement remains a question mark over technology's biggest issues.

Without its own 'iTablet' yet, is Apple missing the boat?

Steve Jobs is on record as dissing "single-purpose" devices like e-readers. But given their recent popularity, was that a mistake?

Not-so-mobile battery life: Time to force the issue

Carmi Levy | Wide Angle Zoom: If power efficiency is important when you buy a car or even a motorcycle, why shouldn't it matter for a smartphone?

Clicker.com cuts through the Web video chaos

In a world where homemade video and Hollywood movies travel the same pipeline, it's good to have a real search engine to cut through the clutter.

Microsoft's Ray Ozzie: 'Nobody's going to be 100% open'

The mobile apps ecosystems of the world may converge over time, led by apps being ported over across platforms, according to the Chief Software Architect.

A case study in improving software: What Office 2010 can learn from Notion 3

A music composition product gambles with a complete overhaul, in an effort to make headway against two well-known competitors in a tough market.