Flaw found in anti-virus software
Products from Network Associates, Trend Micro and Kaspersky Lab are affected, according to an advisory from German security company AERAsec.
Anti-virus software provides a built-in decompression engine to scan for viruses in compressed files. AERAsec has reported that the decompression engines from the three affected suppliers do not appear to cope with very large bzip2 compressed files.
This can lead to the hard disk filling up and high CPU usage, which results in the PC slowing down as the decompression engine processes the large file.
Kaspersky, whose AntiVirus for Linux 220.127.116.11 was affected, said it had already issued a patch and was now "busy developing a new anti-mail bomb technology that can protect users against such attacks generically".
[ Read more ]