NOD32 Antivirus Is Vulnerable to Attacks

NOD32 is one of the most popular antivirus solutions available on the market, combining powerful virus detection engine with high speed scanning functions. Many users are seeing NOD32 as the most efficient antivirus available in present in the detriment of its rivals: Kaspersky Antivirus, Symantec Norton Antivirus and many others.

Because many users are already using this antivirus solution, they should know that the application isn't safe anymore after a vulnerability that can allow an attacker to control your system was discovered.

Security company Secunia said that the vulnerability can cause a Denial of Service attack or can allow an attacker exploit your computer and compromise the system. "Sergio Alvarez has reported some vulnerabilities in the NOD32 Antivirus engine, which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise a vulnerable system," Secunia said.

The company rated the flaw as highly critical, adding that the affected versions of the application are NOD32 for Domino 2.x, NOD32 for DOS 1.x, NOD32 for FreeBSD 1.x, NOD32 for Linux 1.x, NOD32 for MS Exchange Server 0.x, NOD32 for NetBSD 1.x, NOD32 for Novell Netware Server 1.x, NOD32 for OpenBSD 1.x, NOD32 for Windows 95/98/ME 2.x, NOD32 for Windows NT/2000/XP/2003 2.x.

"An integer-overflow within the parsing of DOC files can be exploited to cause a heap-based buffer overflow via a specially crafted DOC file. Successful exploitation allows execution of arbitrary code. A division-by-zero error within the parsing of CHM files can be exploited to cause a DoS via a specially crafted CHM file. The vulnerabilities are reported in versions prior to 1.1743," the company also mentioned.

If you think your computer can be vulnerable to attacks, you should install that latest version of NOD32 antivirus and also update the antivirus database.