Posted by HardOCP News 11:31 AM (CDT)
Wednesday July 20, 2016
According to researchers, flawed uses of code hooking has introduced vulnerabilities that hackers can exploit in as many as fifteen products including those from big names like Symantec, McAfee and AVG.
Researchers from data exfiltration prevention company enSilo found six common security issues affecting over 15 products when they studied how software vendors use ‘hooking’ to inject code into a process in order to intercept, monitor or modify the potentially sensitive system API (application programming interface) calls made by that process. Most of the flaws enSilo found allow attackers to easily bypass the anti-exploit mitigations available in Windows or third-party applications, allowing attackers to exploit vulnerabilities that they couldn’t otherwise or whose exploitation would have been difficult.