Antivirus Engine Design Flaw Helps Malware Sink Its Teeth Into Your System https://www.bleepingcomputer.com/ne...elps-malware-sink-its-teeth-into-your-system/ ---------- #AVGater: Getting Local Admin by Abusing the Anti-Virus Quarantine https://bogner.sh/2017/11/avgater-getting-local-admin-by-abusing-the-anti-virus-quarantine/
Pen testers getting more creative with each passing day. Also one could argue that this bypass is facilitated by the ever present Window's DLL search order hijacking vulnerability: https://bogner.sh/2017/11/avgater-getting-local-admin-by-abusing-the-anti-virus-quarantine
Neither Also I'd like to say that ESET is not vulnerable. The vulnerability being discussed here was discovered internally a long time ago and fixed in all ESET's products via a regular module update.
Nothing new, every software is a security risk. I will never use an Antivirus with autodelete because a false positive could destroy your system - I got about 50 false positives in the last years but no real infection.
#AVGater vulnerability does not affect Windows Defender Antivirus. Link : https://blogs.technet.microsoft.com...y-does-not-affect-windows-defender-antivirus/