A common security bug affected the antivirus engines of three major vendors, AVG, McAfee, and Kaspersky, as enSilo security researchers have discovered. The problem was first detected back in March 2015, when one of enSilo's own products collided with an AVG antivirus on one of its client's workstations.
After further investigation into the matter, enSilo's staff uncovered a security bug in the AVG antivirus as being the cause of the software incompatibility. The security bug relates to the fact that the AVG antivirus creates a memory space with full RWX privileges where it normally runs. Attackers would be allowed to bypass Windows built-in security features.Read more
McAfee has had to admit to an embarrassing vulnerability in one of its own products that could allow hackers to bypass the security in its Enterprise Security Manager product. The flaw was discovered by Claudio Cinquino at Quantum Leap SRL.
In an advisory, the firm said that the flaw could enable an attacker to use a “specially crafted username” to “bypass SIEM ESM authentication… if the ESM is configured to use Active Directory or LDAP authentication sources. This can result in the attacker gaining access to the ESM.” The flaw is certainly something that attackers would seek to make use of if they had already established access to the network in question.Read more