Security vendor F-Secure is urging users to patch their systems after the discovery of two flaws in a version of its antivirus software that leaves users vulnerable to hackers and virus writers.
The first flaw could give hackers complete access to a target PC through a hole that affects F-Secure BackWeb 6.31 and earlier versions. This makes the company's antivirus, BackWeb and policy management software vulnerable.
The second problem is in versions 5.41 and 5.42 of F-Secure's Anti-Virus for MIMEsweeper product. It allows the Sober D worm, which is sent in email-attached Zip files, to bypass the antivirus software and infect PCs.
"Apparently it is only Sober D that's a problem at the moment," said Thomas Kristensen, chief technical officer at Secunia, the Danish security specialist which issued two advisories this morning about the flaws.
"But this is the only virus we know about at present. If one can get past the system, other malware may be able to use the same hole."
More information about the flaws and links to the patches are available here.
Mikael Albrecht, product manager at F-Secure's AV Research Team in Finland, told vnunet.com that the flaws had been identified and fixed by its team as part of routine product maintenance.
"These points have been identified and hot-fixes are available to download for both," he said.
"As far as we know, no users have been affected and we are making users of the relevant products aware of the fixes."
Security firm claims that 117,638 sites out of 135,035 analysed contain serious security flaws
AimBrain adds lip-sync capabilities to its biometrics system
Canadian scientists claim to have found a way to mass produce plastic semiconductors
RAND claims AI could enhance strategic stability by improving accuracy in intelligence collection and analysis