SSL certificate validation flaw discovered in Kaspersky AV software

https://farm8.static.flickr.com/7471/15944989872_b958dc5552_m.jpg

Tavis Ormandy continues his war on buggy antivirus software, as the Google Project Zero researcher reported two serious vulnerabilities, including an SSL certificate validation flaw, in Kaspersky Lab’s popular antivirus offering.

Ormandy reported the vulnerabilities to the vendor in November, and Kaspersky released fixes for both on Dec. 28, though publication of the flaws was “slightly delayed due to the holidays,” according to the issue reports.

Tags:

Industry News

Story added 5. January 2017, content source with full text you can find at link above.

Comments are closed.

More antivirus and malware news?

The Advantages of Threat Intelligence for Combating Fraud
The worst of the worst phishing scams
Resolved: CACTUS Server Upgrade, July 3, 2013
Microsoft Offers Up to $300,000 in New Azure Security Lab
The Upload: Your tech news briefing for Monday, March 30
Swartz suicide shines light on federal anti-hacking law
FTC Can Sue Firms for Failing to Protect User Data: Court
The Dangers External Services Present To Your Website
Push Security Banks $4 Million Seed Funding
Data Security Firm Cyera Raises $300 Million at $1.4 Billion Valuation

SSL certificate validation flaw discovered in Kaspersky AV software

More antivirus and malware news?

Ads

Security news

Malware

Security

IT security

About site

Search Terms Tips

Recent New Tips

Recent Posts