This can allow the coder of the malware to gain access to your private information such as your credit card details and your online banking login credentials. The internet is full of dangerous sites that can inject malware on your computer and use it to note down your keystrokes. This means that the security threat was detected by researchers from Kaspersky or a close party that have warned the developers team of the problem.Browsing the internet without any security software is like driving a car without any anti-collusion system. At the time of writing this articles we have not detected any attacks that have leveraged the vulnerabilities in any way. It is a positive fact that the company has released security updates that have fixed the serious flaws in a timely manner. The vulnerabilities were reported by the security expert Tavis Ormandy and are tracked in two separate Security Tracker alerts – 10375545. The vendor has issued updates that ammend the issue on December 28 2016. Kaspersky Fraud Prevention for Endpoints 6.0 The list of affected products include the following security software made by Kaspersky Labs: This allows them to access the SSL connection which is initiated by the target user browser. In addition a remote user can conduct a dangerous man-in-the-middle attack which exploits the SSL certificate caching error.When the target user trusts an invalid SSL certificate for a specific site, a remote user may bypass the certificate warnings for sites that are listed in the Subject Alternative Names of the original invalid certificate.Local users can obtain a private SSL Key that is used to manage the SSL connections and this allows for the conducting of attacks against the SSL connections initiated by the target user’s browser.Remote users can bypass the certificate validation.Both of them are identified with the same bugs: Security experts have reported that the Kaspersky Anti-Virus and the Kaspersky Internet Security products possess serious vulnerabilities. Kaspersky Anti-Virus and Internet Security Products Contain Serious Bugs Read on to find out more about the reported bugs. The Kaspersky Anti-Virus and Internet Security products were identified with several critical security vulnerabilities that affect their users.
0 kommentar(er)
