F-Secure Patches Critical AntiVirus Flaw
Friday, January 20, 2006 by Patriots | Discussion: Personal Computing
Security firm F-Secure has issued patches for critical flaws in 18 of its antivirus products that fix a vulnerability in the scanning of RAR and ZIP archives for malicious code. Both Windows and Linux based tools are affected, and F-Secure recommends installing the fix immediately.
"It is possible to create specially crafted ZIP archives that cause a buffer overflow. This allows an attacker to execute code of his choice on affected systems," the company said in an advisory. "It is in addition possible to create malformed RAR- and ZIP-archives that cannot be scanned properly. This can lead to a false negative scan result."
"It is possible to create specially crafted ZIP archives that cause a buffer overflow. This allows an attacker to execute code of his choice on affected systems," the company said in an advisory. "It is in addition possible to create malformed RAR- and ZIP-archives that cannot be scanned properly. This can lead to a false negative scan result."
Please login to comment and/or vote for this skin.
Welcome Guest! Please take the time to register with us.
There are many great features available to you once you register, including:
- Richer content, access to many features that are disabled for guests like commenting on the forums and downloading skins.
- Access to a great community, with a massive database of many, many areas of interest.
- Access to contests & subscription offers like exclusive emails.
- It's simple, and FREE!