Antivirus Vendors - Multiple Vulnerabilities
A summary of AV vulnerabilities disclosed by Secunia since December began:
McAfee VirusScan Command Line Scanner Insecure DT_RPATH
| Critical:
|
Moderately critical
|
|
Impact:
|
Privilege escalation
System access
|
|
Where:
|
From remote
|
|
Solution Status:
|
Unpatched |
BitDefender AntiVirus Engine PE File Parsing Buffer Overflow
| Critical:
|
Highly critical
|
|
Impact:
|
System access
|
|
Where:
|
From remote
|
|
Solution Status:
|
Vendor Patch |
CA Anti-Virus Drivers Denial of Service Vulnerabilities
| Critical:
|
Not critical
|
|
Impact:
|
DoS
|
|
Where:
|
Local system
|
|
Solution Status:
|
Vendor Patch |
Sophos Anti-Virus SIT/CPIO File Processing Vulnerabilities
| Critical:
|
Highly critical
|
|
Impact:
|
System access
|
|
Where:
|
From remote
|
|
Solution Status:
|
Vendor Patch |
Clam AntiVirus Multipart Nestings Denial of Service