New Flaws in Top Antivirus Software Could Make Computers More Vulnerable October 5, 2020 https://thehackernews.com/2020/10/antivirus-software-vulnerabilities.html CyberArk: Anti-Virus Vulnerabilities: Who’s Guarding the Watch Tower?
Thanks for these. I was just wondering what the current state of things was where this issue is concerned.
The Group Policy vulnerability noted in Part 3 of the blog series took Microsoft a full year to patch. I will also note that Installers overall "are a clear and present danger."
The first article states: "The bugs impact a wide range of antivirus solutions, including those from Kaspersky, McAfee, Symantec, Fortinet, Check Point, Trend Micro, Avira, and Microsoft Defender, each of which has been fixed by the respective vendor." In some cases you can get details on the status of the specific CVEs at a vendor's web site(s). For example, the article lists CVE-2020-25043, CVE-2020-25044, CVE-2020-25045 affecting Kaspersky products. You will find confirmation that these CVEs have been fixed here: https://support.kaspersky.com/general/vulnerability.aspx?el=12430 Those CVEs are addressed in the Advisory issued on 29th July, 2020.
Also from the second : "While each of these vulnerabilities have now been fixed, I would to specifically recognize the Kaspersky PSIRT team, who were quick to respond to the bug reports and issue a patch for the vulnerabilities."
I saw that they were fixed. My larger concern still unanswered is what of the major vendors that were not mentioned? Not fixed, not tested, or didn't have the issue to begin with?