Internet Security Blog - Free From PCSecurityShield   
Friday, September 14, 2007
  Vulnerabilty Update From Prior Post
Here is more detailed description:

There are two so called vulnerabilities described in the article.

First part mentions BSOD due to the lack of data checking in the internal driver requests. The code that was hacked is outdated and don’t needed for modern PCs. This code will be removed from the products in the nearest MPs.

Second part mentions lack in the self defense of the product. The product is protected from the DuplicateHandle routine for the processes but the author used DuplicateHandle for stopping the threads. There is a huge number of techniques allowing product stop. Most of AV vendors does not provide self defense at all. Kaspersky AV makes self-defense penetration as hard as possible. But we can’t close all the possibilities Windows provides. Closing DuplicateHandle for threads is resource-expensive but ineffective task. Driver in KAV 8.0 will be better defended.

  3:24 PM
Comments: Post a Comment





<< Home
All about Internet Security for the average PC User from PCSecurityShield. Somewhat useful resources (and somewhat funny) that will help you protect yourself.

Archives
December 2006 / January 2007 / February 2007 / April 2007 / May 2007 / June 2007 / July 2007 / August 2007 / September 2007 / October 2007 / December 2007 / January 2008 / February 2008 / March 2008 / April 2008 / May 2008 / June 2008 / July 2008 / August 2008 / September 2008 / October 2008 /


security links
PCSecurityShield   Internet Security Zone   Spyware Guide

Powered by Blogger

Subscribe to
Posts [Atom]

Get it from CNET Download.com!
MyRegistryCleaner3.0

Get it from CNET Download.com!
Security Shield 2008

Get it from CNET Download.com!
The Shield Deluxe 2008

Get it from CNET Download.com!
Spyware 24x7



water filters