Switchzilla hardware and software need attention, unless you fancy arbitrary remote code execution:
Antivirus software is supposed to be an important part of an organization's defense against the endless tide of malware.
Cisco's open source ClamAV can fill that role – once you patch the 9.8/10 rated arbitrary code execution flaw the networking giant revealed on Wednesday.
A vulnerability in the HFS+ partition file parser of ClamAV versions 1.0.0 and earlier, 0.105.1 and earlier, and 0.103.7 and earlier could allow an unauthenticated, remote attacker to execute arbitrary code," states Cisco's security advisory, which identifies the issue as CVE-2023-20032.
[...] ClamAV's blog reveals a second flaw in the software: CVE-2023-20052.
Both are patched in version 1.01 of the application, available here.
[...] But fixing ClamAV is not the end of the story. Addressing the faulty file parser also requires updates to other Cisco products, including the Secure Web Appliance hardware. The Secure Endpoint Private Cloud also needs a fix, as does Cisco's Secure Endpoint product (formerly known as Advanced Malware Protection for Endpoints) for Linux, Windows, and macOS.
(Score: 2, Interesting) by Runaway1956 on Monday February 20, @08:55PM (4 children)
Negative.
Antivirus applications are there for several reasons, including telemetrics, advertising, to make money for the vendor when he makes a sale, a backdoor into your computer for government(s). And, incidentally, it may stop a virus now and then.
https://www.tomsguide.com/us/is-kaspersky-safe,news-25983.html [tomsguide.com]
https://www.tomshardware.com/news/antivirus-programs-bypassed-cia-wikileaks,33845.html [tomshardware.com]
https://www.tomshardware.com/news/antivirus-vendors-cia-vault-7-leaks,33893.html [tomshardware.com]
Abortion is the number one killed of children in the United States.
(Score: 4, Insightful) by JoeMerchant on Monday February 20, @09:22PM
> telemetrics, advertising, to make money for the vendor when he makes a sale, a backdoor into your computer for government(s).
This is why FOSS clamscan is better...
And, joy of joys, we use clamscan in our system. Any odds on how long before Canonical gets 1.0.1, or even 0.103.8 or better into the mainstream 22.04 updates? I just built a new system last Friday and apt update took me up to ClamAV 0.103.6
Україна досі не є частиною Росії Слава Україні🌻 https://news.stanford.edu/2023/02/17/will-russia-ukraine-war-end
(Score: 0) by Anonymous Coward on Monday February 20, @10:19PM (2 children)
Modded offtpic as ClamAV is open source and doesn't have the incentives to spy on people.
Other AV suites are a different story, but this isn't about commercial AV, it's about ClamAV [clamav.net]
Why advertise your ignorance when 15 seconds of DDG will tell you you're talking out of your ass and it smells that way too?
You're welcome:
https://en.wikipedia.org/wiki/Clam_AntiVirus [wikipedia.org]
https://github.com/Cisco-Talos/clamav [github.com]
(Score: 1, Touché) by Anonymous Coward on Tuesday February 21, @01:01AM
Yes, ClamAV is open source - but that doesn't change the title.
(Score: 4, Insightful) by Mykl on Tuesday February 21, @01:11AM
Why do you think that Open Source products have no incentive to spy? A contributor may make it 'worth their while contributing' by including elements that they can obtain 'added value' from.
(Score: 0) by Anonymous Coward on Tuesday February 21, @03:06AM