Hi, I'm not sure if someone already mentioned this, but can someone tell me if the following problem exists in Avast! as well?
"Antivirus software vendor F-Secure issued a patch for a wide range of its products last Thursday after a security researcher in Luxembourg reported vulnerabilities to the company.
A flaw in the way F-Secure software handled ZIP and RAR format data compression archives could allow an attacker to execute remote code on users' systems and to bypass F-Secure's antivirus-scanning capabilities, according to Thierry Zoller, the security engineer and penetration tester who reported the vulnerability to F-Secure. F-Secure called the vulnerability "critical." "
"Zoller, on his blog, praised F-Secure for publicly fixing the vulnerability.
"I found multiple vulnerabilities within various [antivirus] Engines, F-Secure are the first to actually publish a real advisory, others fixed the bugs silently or put a small notice in a change_log," he wrote.
Zoller said he will wait to publish details of the vulnerability. "There are too many [anitvirus] engines vulnerable and I am going to wait until most of them have patched the flaws until I exactly disclose my findings," he wrote."
Here's the link:
http://www.arnnet.com.au/index.php/id;1021392976;fp;2;fpid;1
