Reporting NOD 32 security weakness / bug

Dear sirs

Could you please advise on me on the channels I should follow in order to report a security weakness which I have identified in "NOD 32 Home 4.0.437.0"?

Exploiting this weakness enables a third-party application (eg. malware) to do the following:

i) disable the antivirus and anti-spyware protection without the permission of the user.

ii) close the "NOD32 GUI Window" and keep it hidden from the user, preventing him / her from re-activating the antivirus and anti-spyware protection.

I would dearly like to send ESET a sample application, together with the C++ source code, to demonstrate the exploitation of the weakness.

I have already sent this information to "samples@eset.com" a couple of weeks ago, but to no avail.

Kind regards

Lodewyk

 

Everyone knows that it's possible to disable every AV protection, no matter how good protection mechanism it uses. Self protection mechanisms can only make it harder for malware writers, but if one runs malware with admin rights nothing will 100% stop it from doing the harm.

 

But if the settings are password protected, and the user is not allowed to disable the AV, then the malware should not be able to disable it either, without cracking the password... correct?

 

the malware should not execute, at all, once it does.....From user point of view disabling AV is the least worry

 

Even though I agree that nothing is 100% bullet proof in security -I'm not an expert- password protecting the software should prevent malware from disabling it unless it can crack the password, if not, why bother??

 

No, the settings can be password protected but the malware still can kill the process in question. It's not related.
I defend UAC, in Vista it's annoying but in 7 it's really enhanced and less annoying, but an exclusion list is a good idea.

 

Thanks, boys.

Very true. I bet paying users would love to hear this.

So much for marketing talk and trying to help out .