Bitdefender Fixes Bug Allowing Attackers To Run Commands Remotely
BitDefender security solutions are designed to keep an organization safe from attackers. But what will you do when the same software becomes a threat vector for the attackers exploiting your data? In such cases, you cannot trust any handy tools. It was found that the Bitdefender Total Security 2020 has the Safepay browser component with the Improper Input Validation vulnerability. It allows a specially crafted webpage to run commands remotely in the Safepay Utility process. Due to Bitdefender fixes bug, the Bitdefender Total Security 2020 versions prior to the 24.0.20.116 updates are considered vulnerable to threats.
- The Safe Search and Safe Banking features of the component cannot implement any protections because all the functions use the same set of security tokens when making AJAX requests.
- Besides, they use the same BDNDSS_B67EA559F21B487F861FDA8A44F01C50 and BDNDCA_BBACF84D61A04F9AA66019A14B035478 values.
- In simple words, they cannot provide any extra protection. A user in this situation cannot protect his/her data with any trusted anti-malware program.
- An attacker can merely view these values and request for an arbitrary code on the victim’s computer. The request contains the same tokens used during the Safepay Safe Baking session.
- When processed, the payload launches Command Prompt with the ‘whoami’ command on the victim’s Windows computer.
- Problems apart! BitDefender has now launched a new release for the affected users.
- The latest update released a patch to fix the vulnerabilities that make security blunders while using Safepay banking. It guarantees a secure browsing environment.
- It acts as a Man-in-the-Middle (MitM) proxy to verify all the secure https connections. So, the BitDefender has done its part in fixing the bugs that came with the previous versions.
- But it is a common behavior that can be observed in all antivirus vendors. If you need remote assistance about Bitdefender fixes bug, contact our technical experts.