NOD32 Antivirus Long Path Name Stack Overflow Vulnerabilities

In april I shared with Eset two discovered vulnerabilities (two stack overflow) in NOD32 Antivirus. they are very basic threats but can lead to local/remote arbitrary code execution.
Eset was contacted on April 19 and I receive a fast response. The comunication with Eset had been great, and the threats were patched fast (the update is now available through the regular update mechanism). You can read the advisory here

Leave a reply

You must be logged in to post a comment.