TCH-Thomas Posted November 14, 2006 Share Posted November 14, 2006 Secunia reports this as Highly critical. Read more at: http://secunia.com/advisories/22811/ Description: Sergio Alvarez has reported some vulnerabilities in AVG Anti-Virus, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system. 1) An integer overflow error when parsing CAB archives can be exploited to cause a heap-based buffer overflow via a specially crafted CAB archive. 2) An unspecified error when parsing RAR archives can be exploited to cause a heap-based buffer overflow via a specially crafted RAR archive. 3) An uninitialized variable error exists within the parsing of CAB archives. 4) A division by zero error when parsing DOC files may in certain cases cause a DoS via a specially crafted DOC file. 5) An unspecified error exists within the parsing of EXE files. The vulnerabilities are reported in AVG Antivirus software versions prior to 7.1.407. Solution: Update to the latest version. Quote Link to comment Share on other sites More sharing options...
TCH-Bruce Posted November 14, 2006 Share Posted November 14, 2006 Thanks Thomas Quote Link to comment Share on other sites More sharing options...
Head Guru Posted November 14, 2006 Share Posted November 14, 2006 Finally for once, I replaced a product PRIOR to security issues being announced. LOL Quote Link to comment Share on other sites More sharing options...
TCH-Don Posted November 14, 2006 Share Posted November 14, 2006 Thanks Thomas Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.