AVG toolbar remote code execution vulnerability

BoerenkoolMetWorst · Jul 7, 2014

The AVG Secure Search toolbar includes an ActiveX control that provides a number of unsafe methods, which may allow a remote, unauthenticated attacker to execute arbitrary code with the privileges of the user.
Click to expand...

http://www.kb.cert.org/vuls/id/960193

The Hammer · Jul 8, 2014

Now I know why I didn't see this before. I would have expected it in the other AV section.

BoerenkoolMetWorst · Jul 9, 2014

The Hammer said: ↑

Now I know why I didn't see this before. I would have expected it in the other AV section.
Click to expand...

Well, I wasn't sure whether to post it in the AV section or security issues section, as software vulnerabilities are regularly posted here.

siljaline · Jul 10, 2014

Vulnerability in AVG security toolbar puts IE users at risk

Implementation issues with AVG Secure Search, a browser toolbar from antivirus vendor AVG Technologies that's supposed to protect users from malicious websites, could have allowed remote attackers to execute malicious code on computers.

The toolbar, also known as AVG SafeGuard, supports Google Chrome, Internet Explorer and Mozilla Firefox running on Windows XP and later, and is often bundled as an optional installation with popular free software programs.
Click to expand...

http://www.cso.com.au/article/549511/vulnerability_avg_security_toolbar_puts_ie_users_risk/

safeguy · Jul 10, 2014

AV vendors should stop messing around with browsers. Toolbars for browsers in 2014? Really?

siljaline · Jul 12, 2014

And Windows Update integration as well. If your AV | AS product offers this - it's best that you let your Operating System tell you when and how to patch your system.

The Hammer · Jul 14, 2014

siljaline said: ↑

And Windows Update integration as well. If your AV | AS product offers this - it's best that you let your Operating System tell you when and how to patch your system.
Click to expand...

Amen to that.

siljaline · Jul 14, 2014

I've had those bits turned off forever. And all social networking integration as well.

Log in or Sign up

AVG toolbar remote code execution vulnerability

BoerenkoolMetWorst Registered Member

The Hammer Registered Member

BoerenkoolMetWorst Registered Member

siljaline Registered Member

safeguy Registered Member

siljaline Registered Member

The Hammer Registered Member

siljaline Registered Member

Log in or Sign up

AVG toolbar remote code execution vulnerability

BoerenkoolMetWorst Registered Member

The Hammer Registered Member

BoerenkoolMetWorst Registered Member

siljaline Registered Member

safeguy Registered Member

siljaline Registered Member

The Hammer Registered Member

siljaline Registered Member

Useful Searches