{"id":13700,"date":"2020-03-16T11:57:22","date_gmt":"2020-03-16T10:57:22","guid":{"rendered":"http:\/\/159.69.82.204\/win\/?p=13700"},"modified":"2024-10-05T21:09:35","modified_gmt":"2024-10-05T19:09:35","slug":"sicherheit-avast-deaktiviert-javascript-in-av-programm","status":"publish","type":"post","link":"https:\/\/borncity.com\/win\/2020\/03\/16\/sicherheit-avast-deaktiviert-javascript-in-av-programm\/","title":{"rendered":"Security: AVAST disables JavaScript in AV program"},"content":{"rendered":"

[German<\/a>]A serious vulnerability in its antivirus solutions has forced the security provider AVAST to disable JavaScript in its products for security reasons. Here are a few details.<\/p>\n

<\/p>\n

\"\"AVAST is used by some people as a security and virus protection solution on Windows. However, such supposed security products often bring weaknesses to your system. German blog reader Nobody already pointed this out in this comment<\/a> at the end of last week (thank you). <\/p>\n

Project Zero exposes vulnerability<\/h2>\n

Antivirus solutions use a JavaScript interpreter to execute malicious code in a sandbox. Then the behavior of the code is monitored for indications of malicious code. This is nothing unknown, and security experts know that this is a potential attack point for malicious software. If there is a vulnerability in the sandbox, the malware can escape from the sandbox or play dead if the sandbox is detected. <\/p>\n

\n

Wow – Avast decided to disable their JavaScript interpreter globally!<\/p>\n

The vulnerability report they mention wasn't just me, it was a Project Zero collaboration with @natashenka<\/a> <\/p>\n

I think this is the right decision, it was a *lot* of attack surface. https:\/\/t.co\/iFyry17HD0<\/a><\/p>\n

\u2014 Tavis Ormandy (@taviso) March 11, 2020<\/a><\/p><\/blockquote>\n