Security vendor F-Secure is urging users to patch their systems after the discovery of two flaws in a version of its antivirus software that leaves users vulnerable to hackers and virus writers.
The first flaw could give hackers complete access to a target PC through a hole that affects F-Secure BackWeb 6.31 and earlier versions. This makes the company's antivirus, BackWeb and policy management software vulnerable.
The second problem is in versions 5.41 and 5.42 of F-Secure's Anti-Virus for MIMEsweeper product. It allows the Sober D worm, which is sent in email-attached Zip files, to bypass the antivirus software and infect PCs.
"Apparently it is only Sober D that's a problem at the moment," said Thomas Kristensen, chief technical officer at Secunia, the Danish security specialist which issued two advisories this morning about the flaws.
"But this is the only virus we know about at present. If one can get past the system, other malware may be able to use the same hole."
More information about the flaws and links to the patches are available here.
Mikael Albrecht, product manager at F-Secure's AV Research Team in Finland, told vnunet.com that the flaws had been identified and fixed by its team as part of routine product maintenance.
"These points have been identified and hot-fixes are available to download for both," he said.
"As far as we know, no users have been affected and we are making users of the relevant products aware of the fixes."
Dust storm on Titan only the third Solar System body where such storms have been observed
New technique could enable quantum computers to scale-up to millions of qubits
Systrom and Krieger taking time off "to explore our curiosity and creativity"
Comcast's £29.7bn winning bid more than twice the £13.7bn Rupert Murdoch valued Sky at just eight years ago