Avira – Critical CSRF flaw Vulnerability puts millions users at risk

  • 20 September 2014
  • 1 reply
  • 283 views

Userlevel 7
Badge +54
by Pierluigi Paganini on September 20th, 2014
 

Egyptian bug hunter discovered that Avira Website is affected by CSRF flaw that allows attackers to hijack users’ accounts and access to their online backup.

 What do you think about if tell you that an antivirus could represent a menace for your system? Antivirus like any other kind of software could be exploited by threat actors to compromise the machine as already explained my previous post.The popular antivirus software Avira that includes a Secure Backup service is vulnerable to a critical web application vulnerability that could allow an attacker to take over the user’s account.The Egyptian 16 year-old expert Mazen Gamal reported to The Hacker News that the Avira Website is affected by a CSRF (Cross-site request forgery) vulnerability that allows an attacker to hijack users’ accounts and access to their online secure cloud backup files. Full Article.

1 reply

Userlevel 7
In past years I used Avira they have been one of the most popular Antivirus company on the web. But they got sloppy in their development of their apps. Based on this article they better take to heart what is happening and correct is right away.

Reply