Security flaw in Bitdefender Antivirus Free 2020 leaves millions at risk
Security flaw could allow hackers to gain complete control over a user's system
A critical security flaw has been found in Bitdefender Antivirus Free 2020 by security researchers from SafeBreach which could allow hackers to gain complete control over a user's computer.
The vulnerability was discovered by the company's Peleg Hadar who explained to Forbes why he decided to look for flaws in antivirus software, saying:
"I’ve picked this particular software mainly because it’s a popular one which is probably used by many users, so this kind of vulnerability has a big impact. In my opinion, it’s very important to fix these kinds of issues so people will be more secure."
- Security flaws found in many major kernel drivers
- Valve updates bug bounty rules after Steam zero-day controversy
- Major security flaw hits Dell PCs – and potentially millions of other laptops
The vulnerability in Bitdefender Antivirus Free 2020 is so critical because the dynamic link library (DLL) loaded into memory by the software does not have protections in place to ensure that it is actually from the company. This means that hackers could create their own DLL and inject into the software using a cyber exploit known as DLL hijacking.
To make matters worse, BitDefender's antivirus software loads the DLL every time it is restarted so if malicious code was injected into the software, it would be persistent and almost impossible to track.
Privilege escalation flaw
Hadar provided further details on the security flaw he found in Bitdefender Antivirus Free 2020 in a blog post, saying:
“The vulnerability gives attackers the ability to load and execute malicious payloads using a signed service. This ability might be abused by an attacker, for example to achieve Application Whitelisting Bypass for purposes such as execution and evasion.”
Are you a pro? Subscribe to our newsletter
Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!
Once an attacker gains access to a user's system by exploiting the flaw in Bitdefender's software, they could use the service to operate as an admin, giving them access to almost every file and process stored on the device.
Thankfully, the flaw only affects the free version of the company's antivirus and it has published a security advisory with more details on the vulnerability. Bitdefender has also issued a patch to correct the flaw.
- Also check out our roundup of the best antivirus software of 2019
Via Forbes
After working with the TechRadar Pro team for the last several years, Anthony is now the security and networking editor at Tom’s Guide where he covers everything from data breaches and ransomware gangs to the best way to cover your whole home or business with Wi-Fi. When not writing, you can find him tinkering with PCs and game consoles, managing cables and upgrading his smart home.