Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!


Forgot your password?
Bug Microsoft Security Windows

Kaspersky Fixes Bug That Allowed Attackers To Block Windows Update & Others (softpedia.com) 34

An anonymous reader writes with this story at Softpedia about Google Project Zero security researcher Tavis Ormandy's latest find. A vulnerability that allowed abuse by attackers was discovered and quickly fixed in the Kaspersky Internet Security antivirus package, one which allowed hackers to spoof traffic and use the antivirus product against the user and itself. Basically, by spoofing a few TCP packets, attackers could have tricked the antivirus into blocking services like Windows Update, Kaspersky's own update servers, or any other IPs which might cripple a computer's defenses, allowing them to carry out further attacks later on.
This discussion has been archived. No new comments can be posted.

Kaspersky Fixes Bug That Allowed Attackers To Block Windows Update & Others

Comments Filter:
  • by Anonymous Coward

    Thank you hackers!!!

  • If you didn't already block Windows update already you're just going to hypnotize to death.
  • Im surprised you need malware to break winows update. I can't count the number of times I've had to do something like delete the softwaredistribution folder to start getting updates again.

  • I would love to block Windows Update! Where do I sign up?

A conclusion is simply the place where someone got tired of thinking.