Info

Disclosure

Apr 22, 2005

Discovery

Apr 12, 2005

Dates

Exploit

Apr 22, 2005

Solution

Unknown

Description

BitDefender 8 Professional Plus and Standard Edition contains a flaw that may allow a malicious user to bypass virus protection. The issue is triggered by a race condition caused by a specially crafted "C:\program.exe" file. At Windows startup the file is detected and an alert message is sent to the user, causing the Windows session to begin without starting BitDefender, resulting in a loss of availability of the anti-virus application.

Classification

Location: Local Access Required
Attack Type: Race Condition
Impact: Loss of Availability
Exploit: Exploit Public
Disclosure: OSVDB Verified
OSVDB: Security Software

Solution

Currently, there are no known upgrades or patches to correct this issue. It is possible to correct the flaw by implementing the following workaround(s): The vendor recommends putting all start up commands between double quotes.

Products

SOFTWIN	BitDefender Professional Plus	8
SOFTWIN	BitDefender Standard Edition	8

References

Secunia Advisory ID: 15076
CVE ID: 2005-1286 (see also: NVD)
ISS X-Force ID: 20254
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2005-04/0377.html
http://archives.neohapsis.com/archives/bugtraq/2005-04/0410.html
Vendor URL: http://www.bitdefender.com/

Credit

fRoGGz - unsecurewriteme.com -

Direct URL: http://osvdb.org/15818

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

SOFTWIN

BitDefender Professional Plus

BitDefender Standard Edition

References

Credit