1.    08 Dec 2015 #1
    Join Date : Oct 2014
    Posts : 388
    Win 10 Home Build 1709 16299.19 64bit

    Malwarebytes Vulnerability


    A security vulnerability has been discovered and patched in the Malwarebytes antivirus for Windows, as COSIG (Centre Opérationnel de Sécurité Informatique Gouvernemental) is reporting.
    The discovery was made by Francis Provencher, a member of the COSIG research & pentesting team based in Quebec, Canada.
    According to Mr. Provencher, the vulnerability is triggered "when a malformed executable with an invalid integer (-1) in the 'SizeOfRawData' in UPX section is parsed by [the] Malwarebytes [antivirus]."
    This leads to a memory corruption on the user's computer, which in turn exposes the system to situations where arbitrary code can be executed by an attacker leveraging this issue.
    A memory corruption occurs when the content of a memory location is unintentionally modified by programming errors, or in this case, by malicious code.
    Mr. Provencher and COSIG reported the issue to Malwarebytes Corporation, the company behind Malwarebytes Anti-Malware (MBAM), the antivirus solution where the vulnerability was discovered.
    Malwarebytes, a company that has entered the antivirus market in 2008 and has gained quite a reputation in the meantime, responded to the finding and issued a security patch for its product in no more than two days.
    Proof of concept code is available on GitHub and via the Protek Research Lab website.
    "A vulnerability in Malwarebytes Anti-Malware 2.2.0 was reported to us by an independent researcher," a Malwarebytes spokesperson told Softpedia. "A fix was released two days after it was reported to us and we have seen no evidence it has ever been used in the wild. We work closely with external researchers, and are grateful for the opportunity to improve our products."
    http://news.softpedia.com/news/secur...s-497329.shtml
      My ComputerSystem Spec
  2.    08 Dec 2015 #2
    Join Date : Aug 2015
    Posts : 824
    Win10/64 Pro 1511 (and 2 Win 7/64 Ult & Pro systems)

    Hi:

    I'm not qualified to address the veracity of the claims made in the article.
    I'll defer to others with more security expertise.
    A security vulnerability has been discovered and patched in the Malwarebytes antivirus for Windows,
    I will, however, say that I am immediately skeptical of its accuracy, given the fact that that Malwarebytes Anti-Malware (MBAM) is not, was not and never has been an "antivirus for Windows".
    It is a specialized anti-malware application designed to run alongside an antivirus.

    This article explains in more detail: Does Malwarebytes Anti-Malware replace antivirus software?


    Cheers,
    MM
      My ComputerSystem Spec
  3.    08 Dec 2015 #3
    Join Date : Oct 2014
    Posts : 388
    Win 10 Home Build 1709 16299.19 64bit
    Thread Starter

    Semantics.

    Malwarebytes admits the vulnerability in the last paragraph. Point is Malwarebytes, like all security software, is not perfect.
      My ComputerSystem Spec
  4.    09 Dec 2015 #4
    Join Date : Aug 2015
    Posts : 824
    Win10/64 Pro 1511 (and 2 Win 7/64 Ult & Pro systems)

    True.
    I hope the researchers are better at their security job than they are at nomenclature.

    Thankfully, the vulnerability was fixed several days ago.

    Cheers,

    MM
      My ComputerSystem Spec

 


Similar Threads
Thread Forum
Solved malwarebytes, SuperantiSpyware
every day I run my superantiSpyware on my win.10 64 bit and my 32 bit. on each of them I find anywhere from 3 to 12 spyware items .so I quarantine them.But if I run my Mailwarebytes on both computers they both come up clean every time .but if I run...
AntiVirus, Firewalls and System Security
Windows Defender or Malwarebytes Pro ?
In Windows7 I ran both at same time with no problems,can this be done in Windows10? If not what is the best one to use?
AntiVirus, Firewalls and System Security
Solved Malwarebytes Anti -Exploit
At the moment I'm using Bitdefender anti virus and Malwarebytes anti malware. Would it be advantageous to install the above program. I'm not sure I fully understand what this program is trying to do. I have read the description on their web site...
AntiVirus, Firewalls and System Security
Kaspersky Lab pushes emergency patch for critical vulnerability
Kaspersky Lab pushes emergency patch for critical vulnerability | PCWorld
AntiVirus, Firewalls and System Security
Our Sites
Site Links
About Us
Windows 10 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 10" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd
All times are GMT -5. The time now is 10:27.
Find Us
Twitter Facebook Google+ Ten Forums iOS App Ten Forums Android App



Windows 10 Forums