Avast SafeZone Browser Lets Attackers Access Your Filesystem

An anonymous reader writes: Just two days after Comodo's Chromodo browser was publicly shamed by Google Project Zero security researcher Tavis Ormandy, it's now Avast's turn to be publicly scorned for failing to provide a "secure" browser for its users. Called SafeZone, and also known as Avastium, Avast's custom browser is offered as a bundled download for all who purchase or upgrade to a paid version of Avast Antivirus 2016. This poor excuse of a browser was allowing attackers to access files on the user's filesystem just by clicking on malicious links. The browser wouldn't even have to be opened, and the malicious link could be clicked in "any" browser.

already fixed

[jarkus4]

it would be nice to point out in the summary, that the problem has already been fixed (in December, 10 days after being reported)

Anti-Virus Poll

[GrBear]

Slashdot should have an actual useful poll, like asking people what they use for Anti-Virus software. With all the geeks out there and their collective experience, it would be alot better than some Top 10 list posted by a company acting as a shill for a specific vendor.