Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!


Forgot your password?
Security Windows IT

Avast SafeZone Browser Lets Attackers Access Your Filesystem (softpedia.com) 37

An anonymous reader writes: Just two days after Comodo's Chromodo browser was publicly shamed by Google Project Zero security researcher Tavis Ormandy, it's now Avast's turn to be publicly scorned for failing to provide a "secure" browser for its users. Called SafeZone, and also known as Avastium, Avast's custom browser is offered as a bundled download for all who purchase or upgrade to a paid version of Avast Antivirus 2016. This poor excuse of a browser was allowing attackers to access files on the user's filesystem just by clicking on malicious links. The browser wouldn't even have to be opened, and the malicious link could be clicked in "any" browser.
This discussion has been archived. No new comments can be posted.

Avast SafeZone Browser Lets Attackers Access Your Filesystem

Comments Filter:
  • I had been thinking about ditching Avast for the last few months (not for this reason) as it seemed to be changing into something I don't like the feel of but was reluctant(lazy).

    Finally changed to Avira 2 weeks ago and have been glad I did. Very glad now!
    • Good choice for a free tool. The pop-up in the corner is slightly annoying but since it's free... And it has caught several nasty's that snuck in, but also has thrown up a few false positives for PUP's, but only in places where files had been downloaded (not system files etc.). Also another suggestion is ClamWin. It is open source and free. It is a little clunky but works great on obscure Win OS'es like 2003 & 2008 server plus all the Windows Clients from XP to Win 8.1. It also runs on Linux as I also
  • I used to use AVG but dropped it like a lead balloon because they changed their terms and conditions to spy on the web browsing habits to sell to advertisers http://www.wired.co.uk/news/ar... [wired.co.uk] http://www.techeye.net/news/av... [techeye.net]
  • Doesn't this mean any app you have installed on your computer would let you do this?
    • Post by the researcher is quite nice and understandable.
      Basically Avast opens a local port for the purpose of interprocess communication (or RPC to be specific). It listens to properly formatted post requests (that can be easily sent from another page you open) and performs some actions from predefined list. One of those actions allows to launch this weird "safe" browser with an arbitrary url. Since Avast removed some chromium safety feature it allowed launching dev tools with some arbitrary controlling jav

  • by jarkus4 ( 1627895 ) on Saturday February 06, 2016 @05:39AM (#51452093)

    it would be nice to point out in the summary, that the problem has already been fixed (in December, 10 days after being reported)

  • All browsers allow timothy to infect slashdot.

  • by GrBear ( 63712 ) on Saturday February 06, 2016 @12:02PM (#51452819)

    Slashdot should have an actual useful poll, like asking people what they use for Anti-Virus software. With all the geeks out there and their collective experience, it would be alot better than some Top 10 list posted by a company acting as a shill for a specific vendor.

The Force is what holds everything together. It has its dark side, and it has its light side. It's sort of like cosmic duct tape.