The good folks over at Secunia have posted an advisory for F-Secure products today. There is a vulnerability in the way their AV products handles LHA files which could possibly lead to remote code execution. If you are running the software be sure to upgrade as soon feasible.
From Secunia:
Description:
A vulnerability has been reported in various F-Secure products, which can be exploited by malicious people to compromise a vulnerable system.The vulnerability is caused due to a boundary error in the processing of LHA archives and can be exploited to cause a buffer overflow when decompressing a specially crafted archive.
The vulnerability is related to #1 in:
SA21996Successful exploitation may allow execution of arbitrary code.
Solution:
Apply hotfixes.
Tags: F-Secure, LHA Handling, Vulnerability, Antivirus
Explore
Security Bloggers Network
