Free Republic
Browse · Search
News/Activism
Topics · Post Article

Skip to comments.

Critical bug found in anti-virus software
New Scientist news service ^ | 22 December 2005 | Will Knight

Posted on 12/23/2005 9:05:03 AM PST by george76

A critical software bug has been discovered in several of the most widely used anti-virus programs. It could be exploited to take control of a computer or to steal information, according to an analysis produced by the independent security analyst who made the discovery.

The glitch affects 39 different Symantec products - including both home and enterprise versions of its anti-virus software. It resides within the Symantec anti-virus library, which is used by all of the packages.

The analyst, Alex Wheeler, discovered that a critical error occurs when the Symantec anti-virus library decompresses files from "RAR" format for analysis

Symantec has confirmed the problem and produced an advisory of its own. It is currently working on a permanent fix but has released an update so that computers running its anti-virus software should automatically detect and block attempts to exploit the bug.

(Excerpt) Read more at newscientist.com ...


TOPICS: Business/Economy; Crime/Corruption; Extended News; Government; News/Current Events; War on Terror
KEYWORDS: antivirus; avast; avg; bitdefender; computer; mcafee; n00bs; nod32; norton; panda; rar; rarformat; software; sophos; spying; symantec; trendmicro; zonealarm
Navigation: use the links below to view more comments.
first previous 1-2021-4041-6061-76 last
To: Palladin
I am going to ditch Norton when my subscription runs out next month.

I suggest looking in stores at the software...some ambitious manufacturers are capitalizing on Norton's incompetence. I know that I liked the poetic justice of getting a $20 rebate from McAfee by sending them the first page of my Norton manual!
61 posted on 12/23/2005 10:29:39 AM PST by LostInBayport (Massachusetts liberals refuse to admit we exist...we are the 37% of MA voters who voted for GWB)
[ Post Reply | Private Reply | To 23 | View Replies]

To: KC Burke

KC Burke wrote:
"I don't think I will reload their Shareware firewall on it again."

--- I didn't bother trying the shareware, i bought it at the store so it's the full copy. Also running a faster computer, 3.02ghz, processor, 1 gig ram, 7200rpm drive, updates don't interfere with my normal computing needs ( internet+watching dvds at teh same time.
Fortunately for me, i work near a major software saler, so i can just buy what i need after researching and when i can afford it. I don't mind spending the money to take a "load" off my mind when i'm computing.


62 posted on 12/23/2005 10:44:36 AM PST by 1FASTGLOCK45 (FreeRepublic: More fun than watching Dem'Rats drown like Turkeys in the rain! ! !)
[ Post Reply | Private Reply | To 33 | View Replies]

To: zeugma; Principled
Got this from Geeks To Go:

Step One: Scan for Spyware/Adware
IPB Image Ad-aware SE - Download - Home Page
1) Download and install.
2) Run the Webupdate feature. (Click on the Globe icon, Click connect, Click OK, Click Finish.)
3) Set up the Configurations (Gear wheel at the top) as follows:

4) To start the scan, Click > "Scan Now"5) When the scan has completed, select Next. IPB Image CWShredder - Download - Homepage
Run the program. Click the Fix button to remove any malicious programs found.

IPB Image Spybot S&D - Download - Homepage
Install Spybot and the DSO Exploit Fix. Start Spybot and select Update, Search For Updates, check the box next to each update and then select Download Updates. Next, select Search and Destroy, Check for problems and after scanning is complete, Fix selected problems. Finally, select Immunize and then the Immunize button to block common Spyware programs from installing.

No single program removes every threat. A multi-prong approach is best.

Rogue/Suspect Anti-Spyware Products & Web Sites. Unfortunately, many companies have chosen to exploit the spyware problem by releasing questionable software. These programs may be ripoffs of existing free programs, produce false positives to entice you to buy the full version, leave actual Spyware installed, or at the very worst even install Spyware. Use the link above to see if you have installed any of these programs on your system. Uninstall any found.

Step Two: Viruses/Trojans
Even the best antispyware programs are only able to remove about 70% of infections. Also, the line between spyware and trojans is getting blurred. You can never be too careful with these, we recommend at least one online scan.

IPB Image Ewido Security Suite for Windows 2000 and XP only - Download Free Version (14 day trial) - Homepage
Ewido has been very effective at helping remove some of the more difficult infections. After installed, there should be a icon for ewido on your desktop. Double-click to run it.
Update ewido: From the main Ewido screen, click on update in the left menu, then click the Start update button.
After the update finishes (the status bar at the bottom will display "Update successful"), click on the Scanner button in the left menu, then click on the Start button. This scan can take quite a while to run, but if Ewido finds anything it will pop up a notification, so it needs to be monitored. If notified, select clean and check the boxes "Perform action with all infections" and "Create encrypted backup" before clicking on OK.
When the scan finishes, click on Save Report.

IPB Image Trend Housecall - Homepage
Even if you do have antivirus software it can be compromised and corrupted by many forms of malware, so an online scan is a good idea.

Run the free online virus scan (tick the "Auto Clean" checkbox).

Here's another free online scan: Panda Activescan

IPB Image AVG - Download - Homepage
If you don't have any antivirus software on your system, or if your subscription to definition updates has lapsed, install AVG's very good free version of antivirus. This comprehensive package includes real-time protection, scheduled scans, automatic definition updates, and email scanning.

IPB Image TrojanHunter - Download Free Version (30 day trial) - Homepage
TrojanHunter is the most powerful trojan scanner on the market. Featuring an intuitive user interface and a scanner capable of thoroughly examining your files, system registry, open ports and running processes it gives you all-round protection against trojans.

Step Three: Windows Updates
IPB Image Windows Update - Homepage - Download SP1a
An unprotected, unpatched Windows XP installation will get infected within minutes of connecting to the Internet.

SP2 NOTE: Windows XP Service Pack 2 (SP2) has terrific security features, and we highly recommend everyone install it, however it should not be installed until your system is free from malware. Installing SP2 with malware present can cause many compatibility problems, or even prevent your computer from restarting. If your system has a malware infection, or if you're unsure, use the SP1a download link above.
63 posted on 12/23/2005 10:46:08 AM PST by jdm (I'm not blunting.)
[ Post Reply | Private Reply | To 56 | View Replies]

To: Spktyr

Spktyr wrote:

" you have *no* idea how stupid people are when it comes to using the computer."

----Have you seen how stupid people are when they are on their cell phones and driving? (Sorry couldn't resist a cheap but true joke! ) hahahaha.


64 posted on 12/23/2005 10:51:04 AM PST by 1FASTGLOCK45 (FreeRepublic: More fun than watching Dem'Rats drown like Turkeys in the rain! ! !)
[ Post Reply | Private Reply | To 41 | View Replies]

To: jdm

Excellent! Thanks!


65 posted on 12/23/2005 10:59:05 AM PST by zeugma (Warning: Self-referential object does not reference itself.)
[ Post Reply | Private Reply | To 63 | View Replies]

To: jdm

Thanks again.

Bumping up this very educational thread!

Merry Christmas!!


66 posted on 12/23/2005 12:50:06 PM PST by Palladin (Merry Christmas! God bless us, every one!)
[ Post Reply | Private Reply | To 63 | View Replies]

To: george76

I use Avast. It is not a resource hog (I can even run games with it on with no loss of performance) and it is free and reliable.


67 posted on 12/23/2005 12:53:47 PM PST by Paul_Denton (The U.S. should adopt the policy of Oom Shmoom: Israeli policy where no one gives a sh*t about U.N.)
[ Post Reply | Private Reply | To 1 | View Replies]

Bump for later


68 posted on 12/23/2005 5:39:23 PM PST by nh1
[ Post Reply | Private Reply | To 67 | View Replies]

To: george76

"What is your opinion on dropping Norton in favor of AVG, Nod32, McAfee, BitDefender, or Sophos , etc."

I can't comment too much on the consumer side - I just wanted to point out that the vulnerability was not as catastrophic as portrayed.

Symantec's latest corporate edition, version 10, has anti-spyware, anti-adware, and some Intrusion Detection capabilities. I don't know when and what version that these features are in the Norton consumer product line, but it seems that having the A-V, anti-spyware, and anti-adware in one package is better than maintaining 2 or 3 different products that provide the same functionality. So you might want to compare those features with the other products that you mentioned.

But, people can get almost religious about their choice of A-V software and I don't really want to get into that fray :-)


69 posted on 12/24/2005 12:51:33 AM PST by American in Singapore (Liberals: They even lie in their diaries)
[ Post Reply | Private Reply | To 52 | View Replies]

To: xrp

I'm with you on that. I've never had a computer virus infection in 20 years of computing. You have to do something you shouldn't in order to get one of these things on your computer.


70 posted on 12/24/2005 8:28:28 AM PST by thoughtomator (Congrats Iraq!)
[ Post Reply | Private Reply | To 3 | View Replies]

To: Maceman

Wow, how does FreeRepublic look on pen and paper?


71 posted on 12/24/2005 9:36:22 AM PST by xrp (Conservative votes are to Republicans what 90% of black votes are to Democrats (taken for granted))
[ Post Reply | Private Reply | To 27 | View Replies]

To: xrp
I don't use anti-virus software at all.

Same here, I don't bother with anti-virus software. The only precaution I take besides a firewall is to keep Javascript and ActiveX Controls disabled and not open spam e-mail attachments. It's been years since I've gotten a nasty.

72 posted on 12/24/2005 10:06:18 AM PST by Reaganwuzthebest
[ Post Reply | Private Reply | To 3 | View Replies]

To: KC Burke
One of my old machines that still runs on w98 crashed badly during the latest ZoneAlarm update.

I've had all kinds of blue screen problems with Zone Alarm and Windows 98SE. Since going to Kerio's free version 4.1.2 I've never looked back. It's best feature is the low resources it consumes.

73 posted on 12/24/2005 10:17:52 AM PST by Reaganwuzthebest
[ Post Reply | Private Reply | To 33 | View Replies]

To: jdm

Thanks for the link to Rogue/Suspect Anti-Spyware Products & Web Sites. The other day I downloaded Sypware Cleaner, and it claimed (in red letters) to have found several extremely dangerous registry keys, then it hit me up for money to remove them.

Neither Spybot, nor Adaware, nor Panda hit on those keys.

I manually deleted one, and the only thing that happened was I had a hardware error on rebooting.

I've been wondering if Spyware Cleaner generates spurious hits; it appears it does.


74 posted on 12/24/2005 10:19:39 AM PST by dsc (‚³‚æ‚­‚µ‚ñ‚¶‚Ü‚¦)
[ Post Reply | Private Reply | To 63 | View Replies]

To: jdm
SP2 NOTE: Windows XP Service Pack 2 (SP2) has terrific security features, and we highly recommend everyone install it, however it should not be installed until your system is free from malware. Installing SP2 with malware present can cause many compatibility problems, or even prevent your computer from restarting. If your system has a malware infection, or if you're unsure, use the SP1a download link above.

I would like to install a larger hard drive on my computer and reinstall XP. What's the best way of getting everything upgraded and secure, given that all I have for an Internet connection is a slowdem? If I just try to do an install and a direct update, how likely am I to avoid getting zapped before stuff is secured?

75 posted on 12/24/2005 11:54:30 AM PST by supercat (Sony delinda est.)
[ Post Reply | Private Reply | To 63 | View Replies]

To: supercat
Do you have a CD writer? If so you can download the SP2 update and burn it to disk before you reinstall XP.

If you don't another option is to order SP2 on disk and Microsoft will send it to you free of charge except for shipping and handling:

Service Pack 2 on CD

76 posted on 12/24/2005 1:48:20 PM PST by Reaganwuzthebest
[ Post Reply | Private Reply | To 75 | View Replies]


Navigation: use the links below to view more comments.
first previous 1-2021-4041-6061-76 last

Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.

Free Republic
Browse · Search
News/Activism
Topics · Post Article

FreeRepublic, LLC, PO BOX 9771, FRESNO, CA 93794
FreeRepublic.com is powered by software copyright 2000-2008 John Robinson