Researchers find vulnerabilities in anti-virus software

By

Anti-virus software can be exploited to corrupt IT systems, according to a report by a group of researchers.

German firm AERAsec Network Services and Security GmbH reports to have found vulnerabilities in popular anti-virus software from McAfee, Kaspersky and TrendMicro.


Exploiting the vulnerability can force networks to a standstill resulting in effects similar to a denial-of-service attack, the company claims.

"There is a problem with decompressing files," said Dr. Peter Bieringer, security consulatant for AERAsec Network Services. "Normally anti-virus software decompresses files for scanning. The decompression unit can have problems if the decompressed file is too big."

AERAsec believes that decompressing a large file can use up all available file space and processing power of a computer resulting in machine failure.

"Good anti-virus software has a storage limit, but some software decompression units have no limit," said Bieringer.

In a statement, McAfee admitted it had known about the issue for some time.

"It is an issue McAfee is aware of, but we are still deciding on the depth of the problem," said a spokesman for the company. "We are looking at the basis of our systems. Whether we need to concentrate on that, we won't know until testing has finished on Friday."

Kaspersky AntiVirus for Linux 5.0.1.0, Trend Micro InterScan VirusWall 3.8 Build 1130, and McAfee Virus Scan for Linux 4.16.0 were all found to have issues with the vulnerability.

Got a news tip for our journalists? Share it with us anonymously here.
Copyright © SC Magazine, US edition
Tags:
antivirusfindinresearcherssecuritysoftwarevulnerabilities

Sponsored Whitepapers

See everything. Do more.
See everything. Do more.
Lindentech Secures Digital Identity with Zero Trust and Microsoft Entra
Lindentech Secures Digital Identity with Zero Trust and Microsoft Entra
Diamond IT Delivers GRC Transformation with Microsoft Purview
Diamond IT Delivers GRC Transformation with Microsoft Purview
Linktech Powers Energy Trader’s Essential Eight Compliance in Just Eight Weeks
Linktech Powers Energy Trader’s Essential Eight Compliance in Just Eight Weeks
Byte Delivers Future-Ready IT: Transforming Endpoint Security and Productivity with a Cloud-First Strategy
Byte Delivers Future-Ready IT: Transforming Endpoint Security and Productivity with a Cloud-First Strategy

Events

Most Read Articles

India's alarm over Chinese spying rocks CCTV makers

India's alarm over Chinese spying rocks CCTV makers
Hackers abuse modified Salesforce app to steal data, extort companies

Hackers abuse modified Salesforce app to steal data, extort companies
Victoria's Secret pulls down website amid security incident

Victoria's Secret pulls down website amid security incident
Cyber companies hope to untangle weird hacker codenames

Cyber companies hope to untangle weird hacker codenames
techpartner.news logo
Dave Stevens on Brennan's evolution and the need for Aussie tech unity
Dave Stevens on Brennan's evolution and the need for Aussie tech unity
Sydney's ITKnocks on contact centre AI and the slow death of the IVR
Sydney's ITKnocks on contact centre AI and the slow death of the IVR
"It's an exciting time to be part of the health and aged care sector"
"It's an exciting time to be part of the health and aged care sector"
Insicon founder Matt Miller on the coming 'tsunami' of compliance and educating boards about cyber security
Insicon founder Matt Miller on the coming 'tsunami' of compliance and educating boards about cyber security
Orro claims Australia first with managed digital asset discovery service
Orro claims Australia first with managed digital asset discovery service

Log In

  |  Forgot your password?