NEWS FROM THE LAB - Friday, February 11, 2005

Speaking about security holes... Posted by Mikko @ 06:48 GMT

Our product development group has put out a bulletin regarding a security hole affecting several of our antivirus products.

We urge all affected users to apply the patch, before some clown virus-writer tries to exploit it. This hole is related to a bug in our routine that unpacks ARJ archive files. The bug would allow an attacker to execute code when his ARJ file is scanned.

Also, thanks to ISS X-Force for the professional way they handled this issue with us.

Output of ARJ.EXE from 1991