IPA/ISEC：Vulnerabilities：Security Alert for Vulnerability in Virus Security and Virus Security ZERO

Virus Security and Virus Security ZERO are anti-virus software by SOURCENEXT. Virus Security and Virus Security ZERO are vulnerable to denial of service (DoS) attacks due to a problem in handling compressed files.

When exploited, an attacker could stop the software from scanning for viruses, making it unable to detect viruses as a result, and expose the computer to viruses.

For the latest information, please refer to:
http://jvndb.jvn.jp/contents/en/2008/JVNDB-2008-000050.html

The following creditee reported this vulnerability to IPA on March 11, 2008. JPCERT Coordination Center (JPCERT/CC) coordinated with the product vender and published the vulnerability on August 12, 2008, under Information Security Early Warning Partnership.
Credit: Yuji Ukai of Fourteenforty Research Institute, Inc.

An attacker could stop Virus Security or Virus Security ZERO from scanning for viruses when after scanning a specially crafted compressed file obtained via email, web site, file-exchange program or some other means.

This makes the anti-virus software unable to detect viruses as a result and puts the computer at risk of virus infection.

To fix the problem, update the software to the latest version provided by the vendor.

(1)Evaluation Result

(2) Base Score Metrics

■:Selected Values

IT Security Center,
Information-technology Promotion Agency, Japan (ISEC/IPA)
E-mail: