Tietoa

kesäkuu 2009

ma ti ke to pe la su
1 2 3 4 5 6 7
8 9 10 11 12 13 14
15 16 17 18 19 20 21
22 23 24 25 26 27 28
29 30          

Kategoriat

Lisää minut TypePad-ystävälistallesi

Arkistot

Blog powered by TypePad
Jäsen lähtien 10/2005

« McAfee VirusScanin DUNZIP32.dll-haavoittuvuus julkistettu | Pääsivu | MSN Search Spoof tuottaa aprillipäivähakuja »

30/03/2006

McAfee VirusScan DUNZIP32.dll vulnerability information published

New security advisory about McAfee VirusScan version 10.x vulnerability has been released recently.

This issue has been assigned to Secunia's SA19451, FrSIRT's ADV-2006-1176 etc. I have posted this information to common mailing lists too.

Vendor has fixed the flaw in January, but they didn't informed about new version release. When I asked the situation again on 2nd March, they informed about fixed (delivered) version. All localized builds has been fixed as well.

Vendor is reportedly in process to publish FAQ-type (version release) document to the McAfee/Network Associates KnowledgeBase.

I have tested non-affected product version Build 10.0.27 shipped with immune library version 5.00.06. Additionally, before vulnerability release I have asked Mitre.org to assign their CVE number to this issue. It is CVE-2004-1094 now. Co-operation with vendor worked very well.

I have reported several vulnerabilities related to this library file earlier.

30/03/2006 klo 14:51 (kategoriassa | News in English ) |

Viittaus

Viittausosoite tähän kirjoitukseen:
http://www.typepad.com/services/trackback/6a00d8341c7d5f53ef00d835297bc453ef

Listed below are links to weblogs that reference McAfee VirusScan DUNZIP32.dll vulnerability information published:

Kommentit

Feed You can follow this conversation by subscribing to the comment feed for this post.

Verify your Comment

Kommentin esikatselu

Kirjoittanut:  | 

This is only a preview. Your comment has not yet been posted.

Working...
Your comment could not be posted. Error type:
Your comment has been saved. Comments are moderated and will not appear until approved by the author. Post another comment

The letters and numbers you entered did not match the image. Please try again.

As a final step before posting your comment, enter the letters and numbers you see in the image below. This prevents automated programs from posting comments.

Having trouble reading this image? View an alternate.

Working...

Kommentoi

Comments are moderated, and will not appear until the author has approved them.