CA mistakes Windows system file for malware

By on
CA mistakes Windows system file for malware

False positive causes system crashes.

Computer Associates' eTrust antivirus application flagged a Windows system file as malware for several hours last Friday.

A spokesman for the security vendor told vnunet.com that the error followed an incorrect update of the application's antivirus signature file, causing it to remove or isolate a file named 'isass.exe'.

The company released an update for its antivirus signature file within seven hours.

The isass.exe file is actually a system component for the Windows Server 2003 operating system. The antivirus software caused the operating system to crash, and rendered it unusable in some cases.

Such false positives are a regular problem for antivirus vendors.

Sophos mistakenly claimed in February that several Microsoft Office and Adobe Acrobat Reader components on systems running Mac OS X were infected with the Inqtana virus.

Last July Symantec erroneously detected the the Zlob Trojan in the open source Nullsoft Scriptable Install System tool.
Copyright ©v3.co.uk
Tags:

Most Read Articles

Log In

Username:
Password:
|  Forgot your password?