Folks running Bitdefender's Total Security 2020 package should check they have the latest version installed following the disclosure of a remote code execution bug.
Wladimir Palant, cofounder of Adblock-Plus-maker Eyeo, tipped off Bitdefender about the flaw, CVE-2020-8102, which he found within the suite's SafePay "secure browser." Palant discovered what he called "seemingly small weaknesses" that could be exploited by a hostile website to take control over a computer when opened in Bitdefender's Chromium-based web browser. The bug, privately reported in April, was patched in May.
This week, Palant said the vulnerability stems from the way SafePay – which is supposed to protect online payments from hackers – inspected HTTPS-encrypted connections for signs of malicious activity to block. To do this ..
Support the originator by clicking the read the rest link below.
