Google Researchers Find Wormable "Crazy Bad" Windows Exploit

Discussion in 'other security issues & news' started by itman, May 8, 2017.

Page 3 of 3
  1. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    14,885
    Location:
    Slovenia, EU
    There are probably similar bugs in most AV solutions. For me the big question is are they are discovered and reported to vendor or kept secret and being used for other purposes?
     
    Minimalist, May 28, 2017
    #51
  2. Rasheed187

    Rasheed187 Registered Member

    Joined:
    Jul 10, 2004
    Posts:
    17,559
    Location:
    The Netherlands
    Yup, seems like all AV's may have big holes, and Win Def isn't any different. I suppose most of these bugs are probably being used for targeted attacks.
     
    Rasheed187, May 28, 2017
    #52
  3. itman

    itman Registered Member

    Joined:
    Jun 22, 2010
    Posts:
    8,593
    Location:
    U.S.A.
    As Travis pointed out, the WD engine has a huge footprint which is what makes it vulnerable. Whereas that also might be the case for some third party AVs, it is not the case for all. Eset's for example is modularized with those modules loaded in kernel space. This reduces Eset's kernel footprint considerably, making it less vulnerable.
     
    itman, May 28, 2017
    #53
Page 3 of 3
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...