Tech Insider

Monday, March 21, 2005

ISS Finds McAfee Bugs

Internet Security Systems (ISS), an Atlanta based Security research firm, has issued a warning to users deploying McAfee antivirus software, concerning a serious flaw that poses a threat to a user's confidential information.

According to reports the flaw was detected in several versions of McAfee's products. The company website claims that the vulnerability involves a flaw in the processing of LHA files by an antivirus library which provides an opportunity to possible stack overflow attacks. The vulnerability can be triggered by a remote attacker without the need of user interaction, by sending an e-mail containing crafted LHA file to the target McAfee antivirus library on user's computer.

McAfee antivirus library prior to version 4400 are susceptible to such attacks.

ISS had recently unearthed a vulnerabilities in security packages such as Symantec, F-Secure and Trend Micro. While that of Symantec involved the processing of UPX compress files, the other two had issues with the handling of archive (.arj) files.

Source: TechTree


Post a Comment

<< Home