Zemana Anti Malware 3.0 Coming in the next few months...
- Thread starter Andrew999
- Start date
This thread is being handled by a member of the staff.
- Status
Well they did say "months" in their response to the OP
, but in all seriousness I don't think there hasn't been any news since. I honestly do wish the absolute best for Zemana, I really do, but until I see something tangible (an actual release), to me its just smoke and mirrors at this point. They have been promising releases and have always been saying it will be released soon, it will be released soon, that at this point I don't think anyone believes them. I do think everyone wants them to succeed, but this is what happens when you don't come outright and be honest and truthful to your customers. I know it may seem embarrassing to admit failures, or major issues, but as in real life, people respect you more for being honest then trying to pull the wool over people's eyes.Can someone ask them whether they fixed the vulnerable IOCTL in zam32/64.sys?
The vulnerability was present because anyone could connect as a user-mode client to the Filesystem Mini-Filter's communication port - and the clients to the communication port were then treated as "trusted" to abuse the IOCTL implementation to do something like open a handle to a privileged process (e.g. administrative rights or under the NT Authority Account with SYSTEM rights) which could be abused for privilege escalation.
It's documented by the security researcher who found the vulnerability with MalwareFox Anti-Malware, which appears to be a re-brand of Zemana Anti-Malware, and it was Zemana Anti-Malware kernel-mode software which was abused for the demonstrated attack/s.
http://rce4fun.blogspot.com/2018/02/malwarefox-antimalware-zam64sys.html
Someone didn't read Microsoft's secure guidelines for kernel-mode development:
Driver security checklist - Windows drivers
The vulnerability was present because anyone could connect as a user-mode client to the Filesystem Mini-Filter's communication port - and the clients to the communication port were then treated as "trusted" to abuse the IOCTL implementation to do something like open a handle to a privileged process (e.g. administrative rights or under the NT Authority Account with SYSTEM rights) which could be abused for privilege escalation.
It's documented by the security researcher who found the vulnerability with MalwareFox Anti-Malware, which appears to be a re-brand of Zemana Anti-Malware, and it was Zemana Anti-Malware kernel-mode software which was abused for the demonstrated attack/s.
http://rce4fun.blogspot.com/2018/02/malwarefox-antimalware-zam64sys.html
Someone didn't read Microsoft's secure guidelines for kernel-mode development:
Driver security checklist - Windows drivers
- Nov 19, 2012
- 1,121
They are still sticking to their original commitment i.e. 'Coming in next few months'. You will hear the same thing next few months and next few years .
- May 4, 2018
- 2,261
I don't think there's even gonna be an update at this rate tbh, hope there is one.
~LDogg
~LDogg
- Jan 16, 2017
- 1,469
Coming in the next few months..... but which year? :X3:
:X3:Guys the fact is that they want to directly switch to v4.0, that's why
- Jan 31, 2018
- 66
- Nov 15, 2017
- 1,083
Zemana Ticket:
Thank you for your interest in our products and for contacting us again,
We are planning to release the first beta version of The AntiMalware 3.0 by the end of this year. Next year, we will also release an new version of The AntiLogger.
Thank you for your interest in our products and for contacting us again,
We are planning to release the first beta version of The AntiMalware 3.0 by the end of this year. Next year, we will also release an new version of The AntiLogger.
Let's hope this really is the right time!
- Aug 18, 2015
- 81
- Mar 29, 2018
- 7,613
I got the "... in some months" response some months ago and I like Zemana, but this is getting ridiculous. Oh well, don't need 'em anyway!
and I like Zemana, but this is getting ridiculous. Oh well, don't need 'em anyway!
- May 4, 2018
- 2,261
Doubt you'll see any updates this month. However Zemana's free on demand scanner product is still viable to use as there detection seems to be updated via the cloud.
~LDogg
~LDogg
- Mar 29, 2018
- 7,613
Zemana is a waste of time IMO. When my little test showed how their cloud system works - a series of distributed random PC's sitting in apartments spread across the world I died a little inside. BUT the fact I could see the exposed WAN IP on those devices, along with intimate details of each device I died even more inside.
It's dead. Put a fork in it.
It's dead. Put a fork in it.
Songoku
Level 1
- Oct 18, 2018
- 14
I am still a believer ... Good things happen in time!
- Jan 10, 2015
- 207
Hi,guys.
Check your inboxes.Just received a notification to download the 3.0 beta.
Check your inboxes.Just received a notification to download the 3.0 beta.
- Status
Similar threads
