Symantec's AV vulnerability with RAR files

By Justin Mann on
It seems that in the very popular AV suite Symantec Anti Virus, there exists a vulnerability in the way theis programs handle the scanning of RAR files. Since RARs are often used as containers for executables containing viruses, they are often automatically scanned on systems with these suites. The problem could result in a heap overflow that results in potential arbitrary code execution, resulting in a compromised system. A cleverly designed RAR is all it takes, and it could even happen automatically - the scan of the file itself is enough. Read more information here. It's considered more important than usual as often with the coupled e-mail protection, e-mails containing RARs are scanned automatically.

Add New Comment

TechSpot Members
Login or sign up for free,
it takes about 30 seconds.
You may also...
Get complete access to the TechSpot community. Join thousands of technology enthusiasts that contribute and share knowledge in our forum. Get a private inbox, upload your own photo gallery and more.