Username: Password:
  • aaa
  • 1
  • ddd
    • Join  |  Login

    Anti-Virus Products Miss Malware in Modified Zip Files
    < Previous | Next >
    Posted by wingman 1881 Day ago, There are 3 comments, 5428 views
    An anonymous researcher has reported through several sources that anti-virus products from six vendors fail to detect malware when it is contained in a corrupted Zip file.The modification to the Zip file prevents the anti-virus programs from detecting files in it, but it doesn't prevent users from accessing those files, according to an advisory from Internet security research firm iDefense. The vulnerable products are from McAfee Inc., Computer Associates International Inc., Kaspersky Labs, Sophos plc., Eset Software and RAV, according to the advisory.

    The problem has to do with the products' handling of an error condition in Zip files, which store information about compressed files stored within them in two locations. There is a local header preceding each file in the archive and a global header at the end of the archive. When the uncompressed size of the file within both archives is set to zero, the affected programs fail to detect malware in the files.

    According to their advisory, iDefense notified the affected vendors of the problem on September 16. Some responded in time for Monday's advisory. McAfee provided a detailed explanation, fixes for their products, and noted that there are no known exploits of this technique. Computer Associates and Eset also responded and provided fixes, according to iDefense.

    Kaspersky indicated that the problem would be fixed in their next release. Neither RAV nor Sophos responded, according to iDefense.

    News Source
    Like this story?Spread the news by clicking below:
    Add to: Score: (6 ratings) Rating it:
    Recommend: System Errors? Click here to Fix your PC

    There are 3 additional comments
    Re: Anti-Virus Products Miss Malware in Modified Zip Files by jangali on 2007-01-28 20:33:36
    hi
    RE:Anti-Virus Products Miss Malware in Modified Zip Files by deleted on 2007-06-20 19:13:57
    RE:Anti-Virus Products Miss Malware in Modified Zip Files by deleted on 2007-06-20 19:14:22
    No Comments Allowed for Anonymous, please login or register
    Related News
  • Anti-Virus Products Miss Malware in Modified Zip Files
  • AVG Anti-Malware 7.5.467a1005
  • Malwarebytes Anti-Malware v1.18 + KeyGen
  • Comodo BOClean Anti-Malware 4.25
  • Comodo BOClean Anti-Malware 4.23
  • Comodo BOClean Anti-Malware 4.24 Final
  • AVG Anti-Virus Professional / Anti-Virus+Firewall v8.0 Build 233a1425
  • AVG Anti-Virus Professional \ Anti-Virus+Firewall v8.0 Build 233a1425
  • AVG Anti-Virus v7.1.371
  • Remove Hotfix Backup Files 1.2.0
    • Most Recent Articles
  • Blindwrite Suite 6.3.1.6 + Crack
  • Nokia Ovi Suite 2.0
  • AnyDVD & AnyDVD HD 6.6.0.7 Final
  • AVG Anti-Virus Free 9.0.716 Build 1803
  • K-Lite Mega Codec Pack 5.5.1
  • K-Lite Codec Pack Full 5.5.1
  • Auslogics Disk Defrag 3.1.2.90
  • Winamp 5.57 Build 2765 Beta
  • Adobe Flash Player 10.1.51.45 Pre Release
  • ConvertXtoDVD 4.0.8.320 Final
    • Submit New Story
    Navigation
  • Home
  • Submit News
  • Topic List
  • Top 10
  • Search
  • News Archive
    • RegistryBooster 2009
    SPONSORED
    Subscribe
  • Rss Feed
    • Special Topic
  • 9down
  • Software News
  • Company
  • ACD Systems Adobe
  • Apple ATI Google
  • Intel Macromedia
  • Mozilla Nokia nVidia
  • Yahoo Sony Symantec
  • AMD Microsoft
  • Operating System
  • Windows 2000
  • Windows 2003
  • Windows Vista
  • Windows Server 2008
  • Windows XP
  • Windows 7
  • RedHat Linux Lindows
  • FreeBSD
  • CentOS Ubuntu NetBSD
  • Audio &Video
  • PowerDVD Real Winamp
  • Windows Media Player
  • CloneDVD Mobile
  • Virtual CloneDrive
    • AnyDVD CloneDVD CloneCD WinDVD K-Lite
  • Business
  • Office Office 2007
  • Office 2004 For Mac
  • Office2003
  • Microsoft Office Live
  • Drivers
  • AMD64 VIA nForce4
  • nForce DirectX
  • Geforce FX
  • Nvidia CG ToolKit Others
  • Internet
  • IE6 IE7 IE8 Opera
  • PHP ICQ
  • MSN MSN Messager
  • Trillian Windows Live
  • Security
  • Agnitum Outpost Firewall Pro F-Secure
  • Tiny Personal Firewall
  • McAfee
  • Network tools
  • CuteFTP Pro FlashFXP
  • FTPRush Serv-U
  • Ad-Ware
  • Desktop
  • ThemesStyleXP
  • System Utilities
  • Nero 9
  • Alcohol120% WinZip
  • Nero 7 Nero Nero6
  • Nero Linux
  • CherryOS TweakNow
  • Hiren's BootCD
  • WinRAR
  • System Mechanic Pro
  • Others
  • Hard Disk Games
  • Hardware & Drivers
    • Stories Archive
  • December , 2009
  • November , 2009
  • October , 2009
  • September , 2009
  • August , 2009
  • July , 2009
  • June , 2009
  • May , 2009
  • April , 2009
  • March , 2009