-{ Quote: "Dr.Web LHA Directory Name Buffer Overflow

Description:
Jean-Sébastien Guay-Leroux has reported a vulnerability in Dr.Web, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.

Solution: As a workaround, you can disable the scanning of archives by setting the "CheckArchives" option in drweb.ini to "No"." }-
Secunia (http://secunia.com/advisories/22019/)

-{ Quote: "Secunia (http://secunia.com/advisories/22019/)" }-
Considering that the vulnerability is with the engine itself, Dr.Web, Virus Chaser and anything else that uses Dr.Web engine is vulnerable.

But older versions of Dr.Web are unaffected.

heh , after disabling "scan running program and modules" to avoid my computer to freeze at every update , now i also need to disable something else ? ... after another standard rating at the AV comparative , heck even free AV are better now , i wonder what i was thinking when i've bought my licence. well , whatever , thx for the info Ronjor.

Bad thing is that even though their support team is very nice, I've only gotten any sample added to their database once. The other times, I had to send the samples through Virus Chaser to get them added to the database.

Still, I'm not jumping the gun. I have full faith that Dr.Web 5.0 will be a decent product.

per: Pavel Ershov, Doctor Web, Ltd on the DrWeb forum "It is already corrected".

-{ Quote: "per: Pavel Ershov, Doctor Web, Ltd on the DrWeb forum "It is already corrected"." }-
How can it be corrected without an engine version update? ???

-{ Quote: "How can it be corrected without an engine version update? ???" }-
Here is the reply form the D.Web Forum.
BC.

i dont speak that lanuage sorry

I have full faith that Dr.Web 5.0 will be a decent product.


Hi Firecat,
Do you know when they will release version 5.
Badcompany.

-{ Quote: "i dont speak that lanuage sorry" }-

By Babelfish website translation it states what to make of it. Pavel Ershov responds that it already is fixed. No other explanation is given as to how. Must of been some internal downloadable scripting tweak eh?...??? :o ;)

-{ Quote: "By Babelfish website translation it states what to make of it. Pavel Ershov responds that it already is fixed. No other explanation is given as to how. Must of been some internal downloadable scripting tweak eh?...??? :o ;)" }-

Hello everyone,

Yes the problem has been solved without the engine update - fortunately, our technology allows us to do it by issuing a vdb add-on. A more fundamental research on the vulnerabiulity is been conducted in our Lab. We shall inform you as soon as we have the final solution.
But Dr.Web is safe again since yesterday afternoon.

Excellant news and thanks much for the update Severyanin...:thumb: 8)

-{ Quote: "
Solution: As a workaround, you can disable the scanning of archives by setting the "CheckArchives" option in drweb.ini to "No".Secunia (http://secunia.com/advisories/22019/)" }-

Manual configuration or what? :o You are supposed to Edit the .ini file? No GUI? :-\

You shouldn't need to do any of this, they corrected the problem via a DrWEB update...:)

hmmm , i don't see Dr web listed on Jotti anymore ...

-{ Quote: "hmmm , i don't see Dr web listed on Jotti anymore ..." }-
I just noticed that too. Whats up with that? :o

-{ Quote: "don't see Dr web listed on Jotti anymore Whats up with that?" }-
Dunno, but they're back.