NOD32 Antivirus Long Path Name Stack Overflow Vulnerabilities May 20
In april I shared with Eset two discovered vulnerabilities (two stack overflow) in NOD32 Antivirus. they are very basic threats but can lead to local/remote arbitrary code execution.
Eset was contacted on April 19 and I receive a fast response. The comunication with Eset had been great, and the threats were patched fast (the update is now available through the regular update mechanism). You can read the advisory here