Monday, September 7, 2015

Vulnerability In F-Secure Products

There has been a vulnerability in Windows version of several F-Secure products. The vulnerability is in F-Secure Gatekeeper driver (fsgk.sys). Successful exploitation of the vulnerability will result in a local privilege escalation of a normal user account to an administrator or system account.

Affected versions:

Corporate products

    F-Secure Client Security
    F-Secure Client Security Premium
    F-Secure Anti-Virus for Workstations
    F-Secure Server Security
    F-Secure Server Security Premium
    F-Secure Email and Server Security
    F-Secure Email and Server Security Premium
    F-Secure Protection Service for Business (PSB) Workstation Security
    F-Secure Protection Service for Business (PSB) Server Security
    F-Secure Protection Service for Business (PSB) Email and Server Security

Consumer products

    F-Secure Safe Anywhere PC
    F-Secure Internet Security
    F-Secure Anti-Virus
    F-Secure Ultralight Anti-Virus Beta


Fix is available in the automatic update channel for all affected products. No user action is needed if automatic updates is enabled. More information can be read from the correspondent security advisory.

No comments: