Email us! Subscribe to Liquidmatrix!

BitDefender AntiVirus Engine PE File Parsing Buffer Overflow

Author: Dave Lewis
December 18, 2006 at 7:48 am · Filed under Vulnerability

From Secunia:

Description:
Sergio Alvarez has reported a vulnerability in BitDefender Anti-Virus, which can be exploited by malicious people to compromise a vulnerable system.

The vulnerability is caused due to an integer overflow within the AntiVirus engine when parsing certain packed PE files. This can be exploited to cause a heap-based buffer overflow via a specially crafted PE file.

Successful exploitation may allow execution of arbitrary code.

Solution:
Update to the latest version.

Article Link

Tag It:
  • Digg
  • del.icio.us
  • Slashdot
  • Technorati
  • SphereIt
  • StumbleUpon
  • Fark
  • YahooMyWeb
  • Furl
  • Spurl
  • Ma.gnolia
  • NewsVine
Related Articles:

  • AVG Anti-Virus Problems
  • Symantec Decomposer RAR Handling Vulnerabilities
  • Trend Micro UPX Processing Buffer Overflow
  • OpenOffice Bug Hits Multiple Operating Systems
  • Symantec Mail Security Appliance File Parsing Vulnerabilities

    • Leave a Comment