瑞星卡卡安全论坛技术交流区系统软件 【转帖】卡巴暴严重漏洞!!!

123   2  /  3  页   跳转

【转帖】卡巴暴严重漏洞!!!

引用:
【661230的贴子】那个杀软又没有漏洞那。只是没有人找罢了,大家说那?
...........................


是啊。
gototop
 

是真的
gototop
 

那怎么办,换回用瑞星?弄来弄去好麻烦的
gototop
 

换来换去的很麻烦,今天换掉了卡巴,要是明天有消息说瑞星有漏洞,再换掉瑞星,麻烦不?!最主要还是看上网时的安全意识.偶决定还是用卡巴.
gototop
 

引用:
【暗之触龙神的贴子】换来换去的很麻烦,今天换掉了卡巴,要是明天有消息说瑞星有漏洞,再换掉瑞星,麻烦不?!最主要还是看上网时的安全意识.偶决定还是用卡巴.
...........................

言之有理,我还有防火墙呢
gototop
 

哦买噶的,树大招风,没办法,希望早点出补救办法。
gototop
 

真的是真的

附件附件:

下载次数:0
文件类型:image/pjpeg
文件大小:
上传时间:2005-10-4 23:21:56
描述:



gototop
 

等升级包吧。
gototop
 

Kaspersky Lab comments on a report regarding a vulnerability in the company's antivirus products
There has recently been a wide-ranging discussion in the mass media about a report by Alex Wheeler, an independent researcher, that a vulnerability related to processing files of the CAB format has been discovered in Kaspersky Lab antivirus products. Taking into account the close attention of the computer community, Kaspersky Lab considers it necessary to provide official comments on the incident.

The company confirms the presence of a vulnerability in a Kaspersky Anti-Virus module used to process CAB files. Taking advantage of this vulnerability results in a malfunction of the antivirus program. This effect is present only in the Windows environment and does not affect other operating systems.

At the same time, Kaspersky Lab specialists have taken measures to eliminate the threat related to the CAB module vulnerability. First of all, on receiving the relevant data, the virus analyst team within a short time period created a package of signatures that detect possible exploits of this vulnerability (procedures that use the vulnerability to compromise a computer). This set of signatures was added to the antivirus databases of Kaspersky Anti-Virus on September 29, significantly reducing the chances of successful use of the CAB vulnerability exploits. Furthermore, no attempts to create and distribute such exploits have been recorded to date. In this connection, it should be noted that Alex Wheeler, who discovered the vulnerability in question, has not provided demonstration code that uses it.

All in all, based on the above factors it can be stated that the actual threat posed by the CAB vulnerability is minimal and cannot affect the level of antivirus protection provided by Kaspersky Lab products.

Kaspersky Lab experts are currently developing an emergency update of the company's antivirus products which include the CAB module affected by the vulnerability. The revised list of such products includes: Kaspersky Anti-Virus Personal 5.0, Kaspersky Anti-Virus Personal Pro 5.0, Kaspersky Anti-Virus 5.0 for Windows Workstations, Kaspersky Anti-Virus 5.0 for Windows File Servers, Kaspersky Personal Security Suite 1.1. Importantly, version 4.5 of Kaspersky Lab's antivirus products is not affected by the vulnerability. Updates eliminating the CAB vulnerability for all the programs listed above will be released in the second half of October 5th, 2005 and will be available for installation using standard updating procedures.

Kaspersky Lab is also a known provider of antivirus solutions for OEM and technology partners. Majority of solutions distributed by Kaspersky Lab OEM and technology partners does not incorporate the vulnerable module and thus is not affected. Furthermore the signature database update released by Kaspersky Lab on 29th of September prevents potential attacks by detecting and neutralizing the malicious code of a possible exploit before system can be affected. This countermeasure provides necessary level of protection for potentially vulnerable systems until the software update is released.

  04 Oct 2005 


gototop
 

马上就会修复了
http://forum.ikaka.com/topic.asp?board=33&artid=7258265
gototop
 
123   2  /  3  页   跳转
页面顶部
Powered by Discuz!NT