ESET File Security (Linux / FreeBSD) – Arbitrary File Deletion

Product Description:

Safeguard your Linux, BSD, and Solaris file servers with ESET File Security’s real-time protection from known and emerging threats. With ESET, you will never have to choose between security and performance.

Vulnerability Discussion:

Malware under certain circumstances can trigger an Arbitrary File Deletion which could cause any file on the server, including root owned files, to be deleted.

Vendor Contact Timeline:

2018-09-28: Vendor contacted via email.
2018-10-05: Vendor acknowledges report.
2018-11-28: Vendor confirms vulnerability.
2019-02-07: Vendor issues product update.
2019-02-07: RACK911 Labs issues advisory.

About Us:

RACK911 Labs
1110 Palms Airport Drive, Suite 110
Las Vegas, NV 89119