Slashdot Mirror

← Back to Stories (view on slashdot.org)

AVG, McAfee, Kaspersky Antiviruses All Had a Common Bug (softpedia.com)

Posted by timothy on from the fall-together dept.

An anonymous reader writes: Basic ASLR was not implemented in 3 major antivirus makers, allowing attackers to use the antivirus itself towards attacking Windows PCs. The bug, in layman terms, is: the antivirus would select the same memory address space every time it would run. If attackers found out the memory space's address, they could tell their malicious code to execute in the same space, at the same time, and have it execute with root privileges, which most antivirus have on Windows PCs. It's a basic requirement these days for software programmers to use ASLR (Address Space Layout Randomization) to prevent their code from executing in predictable locations. Affected products: AVG, McAfee, Kaspersky. All "quietly" issued fixes.

7 of 132 comments (clear)

  1. My what a headline by chispito · · Score: 4, Funny

    Let me guess: the bug was somebody set up them the bomb?

    --
    The Daddy casts sleep on the Baby. The Baby resists!
    1. Re: My what a headline by Anonymous Coward · · Score: 3, Funny

      Affected users are advised to make their time and take off every ZIG.

    2. Re: My what a headline by jfdavis668 · · Score: 3, Funny

      For great justice

    3. Re:My what a headline by SeaFox · · Score: 3, Funny

      I was going to guess there was this one weird trick to solve it that PC repair technicians don't want us to know!

  2. Re:Anti-virus by phishybongwaters · · Score: 4, Funny

    ACtually yes corporations actually care about antivirus, Kaspersky is one of the heavy hitters in this regard, and now I have to go verify our half assed implementation is patched. And you can fix stupid with software by locking down and limiting the amount of stupid things mr stupid can do. The fantasy of "no viruses if you have no script and don't visit porn sites" is that, a fantasy that evaporated a long time ago. Those of us tasked with securing windows servers and clients (I'd laugh if it didn't make me die inside) have to deal with real stupid, not theoretical internet stupid.

  3. the biggest problem was the vendor. by nimbius · · Score: 5, Funny

    the thing that made antivirus --and still makes it -- such a pain in the ass is the fact that PC vendors include some crippled demoware trial version that, once monthly, becomes self aware and marks the entire vendor bloatware suite as some kind of second coming of hitler. its also worth noting that once this version expires it floats atop the OS as a bloated corpse sucking resources and occassionally bitching about the cash it needs to continue its reign of bitchery. Its nearly impossible to remove it without 3 passwords and your firstborn, and if you ever accidentally install another antivirus alongside it well then buckle up for the ride because your PC is about to heat up like a hot pocket as shitware 2.2 brawls to the death with whatever 6 gigabyte flaming turd mcafee or norton have squeezed out this year.

    and antivirus isnt just antivirus, heavens no. its full system shield defense chevron carbunkle 5.5 with the privacy protection cup suite. every bit of data going in or out will be funneled through this application and like some multi-lane closure on the 405 most traffic will grind to a glorious halt while its inspected, detected, and ultimately forgotten.

    --
    Good people go to bed earlier.
    1. Re:the biggest problem was the vendor. by CrashNBrn · · Score: 3, Funny

      most traffic will grind to a glorious halt while its inspected, detected, and

      Don't you mean, "Injected, Inspected, Detected, Infected, Neglected and Selected."
      --- Arlo Guthrie.