Kaspersky Application Vulnerability Analysis - gHacks Tech News

Kaspersky Application Vulnerability Analysis

We usually do not cover commercial software here at Ghacks. There are only a few exceptions to that rule. One is if we got our hands on the software and are allowed to give it away for free, another if the software has a feature that is worth writing about.

Kaspersky Internet Security 2009 seems to have such a feature (the very same feature is also available in Kaspersky Antivirus 2009) that is called Application Vulnerability Analysis. The analysis will compare the version of installed software with the latest one in a software database much like software update checkers such as Sumo do.

The emphasize of the analysis lies on vulnerabilities. The module can scan the default program folders of a Windows installation and will check the installed software against a software database on the Internet.

It will display all software programs with known vulnerabilities. Not all locations are scanned by the module. A full system scan on the other hand will include the application vulnerability analysis for all files of a computer system.

kaspersky vulnerable applications

The module will list all vulnerable applications of a computer system in a table. The table includes the name of the software program, the severity of the vulnerability and a link to a website containing more information.

A double-click on the link will open the security advisor in the default browser that lists details about the security vulnerability including affected software products, the impact if the vulnerability would be exploited and a link to additional information.

The scanner is not working perfectly all the time. It did for instance report a vulnerability in Open Office 3 that only affected Open Office 2.0 to 2.4. Kaspersky's application vulnerability analysis is nevertheless a step in the right direction. While the operating system itself is still a main target for attackers many tend to exploit security vulnerabilities in common applications (web browsers, email clients, office suites) as well. It is probably safe to assume that other companies will include a similar module in their applications in the future.





  • We need your help

    Advertising revenue is falling fast across the Internet, and independently-run sites like Ghacks are hit hardest by it. The advertising model in its current form is coming to an end, and we have to find other ways to continue operating this site.

    We are committed to keeping our content free and independent, which means no paywalls, no sponsored posts, no annoying ad formats (video ads) or subscription fees.

    If you like our content, and would like to help, please consider making a contribution:

    Comments

    1. Marc said on February 14, 2009 at 8:18 pm
      Reply

      Bar none, NOD32 is the best of the best and has been for many years. No useless false positives and the latest very is just about or the most effective for things “in the wild”, the heuristic beats the competition to shreads. Who need a signature update when you’re already infected? The downer, you have to digest the less than user friendly interface ;)

    2. Calvin said on August 22, 2009 at 5:58 pm
      Reply

      Kaspersky is the best.

    Leave a Reply