Protection vendor Avast has urgently disabled a component in its antivirus solution that researchers reported could have place above 400 million people at risk of arbitrary code execution remotely.
“Despite becoming very privileged and processing untrusted input by style and design, it is unsandboxed and has poor mitigation protection.
“Any vulnerabilities in this method are significant, and very easily obtainable to remote attackers.
1/two-Very last week, three/four @taviso documented a vulnerability to us in a person of our emulators, which in theory could have been abused for RCE. On three/9 he released a resource to simplify vuln. analysis in the emulator. Now, to guard our hundreds of thousands and thousands of people, we disabled the emulator.
— Avast (@avast_antivirus) March 11, 2020
In January this 12 months, the security vendor was at the cynosure of a privateness scandal involving its details-harvesting subsidiary Jumpshot, which it was forced to divest.
Avast also accidentally dispersed malware to thousands and thousands of people for above a month in 2017, through the CCleaner utility that the security vendor had purchased the same 12 months.