News, tips, advice, support for Windows, Office, PCs & more. Tech help. No bull. We're community supported by donations from our Plus Members, and proud of it
Home icon Home icon Home icon Email icon RSS icon
  • McAfee and Symantec driver vulnerability

    Posted on Alex5723 Comment on the AskWoody Lounge

    Home Forums Code Red – Security/Privacy advisories McAfee and Symantec driver vulnerability

    This topic contains 1 reply, has 2 voices, and was last updated by  OscarCP 3 weeks, 5 days ago.

    • Author
      Posts
    • #2007154 Reply

      Alex5723
      AskWoody Plus

      SafeBreach Labs calls out McAfee and Symantec over driver vulnerability

      Cybersecurity company, SafeBreach Labs, has called out McAfee and Symantec for a serious oversight in how they handle drivers. According to Peleg Hadar, Security Researcher, SafeBreach Labs, this is a vulnerability that has already been exploited. Both vendors have issued patches to rectify this issue.

      The vulnerability is recorded by both vendors as Self-Defense Bypass and Potential Usages. The CVE number for McAfee is CVE-2019-3648 while for Symantec it is CVE-2019-12758….

      SafeBreach Labs calls out McAfee and Symantec over driver vulnerability

      1 user thanked author for this post.
    • #2007554 Reply

      OscarCP
      AskWoody Plus

      Question: According to the article, the problem in Symantec, McAfee and Avast, among others, is due by their developers use of “Microsoft code” that creates the vulnerability now being exposed and, again according to the article, already exploited in malicious attacks. So: is this a problem only with the versions of these AV applications for Windows-running PCs? And if so, which versions of Windows?

      The same companies sell or provide versions for Macs and for Linux-running PCs of their antivirus software. Are those also compromised, or is this only a problem for Windows users, because that “Microsoft code” has been used only for the Windows-ready versions of the AVs?

      Or to put it in another way: is this actually also a big problem for macOS and Linux users, or just for those that use Windows?

      Windows 7 Professional, SP1, x64 Group B & macOS + Linux (Mint) => Win7 Group W + Mac&Lx

    Please follow the -Lounge Rules- no personal attacks, no swearing, and politics/religion are relegated to the Rants forum.

    Reply To: McAfee and Symantec driver vulnerability

    You can use BBCodes to format your content.
    Your account can't use Advanced BBCodes, they will be stripped before saving.