Vulnerabilities / Threats
11/16/2012
11:32 AM
50%
50%

Windows 8 Compatibility Plagues Antivirus Tools

Don't try installing free tools from popular antivirus developer Avira on Windows 8 systems yet.

Beware running free Avira antivirus products on Windows 8 or Windows Server 2012 systems.

Earlier this month, after users reported that Avira's antivirus software was triggering a blue screen of death on their new Windows 8 systems, the free antivirus developer released an advisory confirming that "currently, the Avira products are not ready for Windows 8 and Windows Server 2012 (built on Windows 8)."

Tuesday, however, as part of a planned series of patches that will make its security software not just stable when being run on Windows 8, but also certified by Microsoft as being compatible, Avira released a fix for its 2013 antivirus software, which it said will eliminate the "stability problems" being experienced by customers.

"We are working very hard to get our products Windows 8 compatible as soon as possible," said Avira product manager Sorin Mustaca in a blog post. "The most important issues we are facing are related to the stability of the software and its integration in the Windows 8 operating system."

[ Compatibility issues aside, Windows 8 is good news for enterprise security. Read more at Windows 8: A Win For Enterprise Security. ]

In the interim, however, anyone who attempts to install Avira's software will still see a popup screen warning that "Windows8 is not yet officially supported by Avira Free Antivirus." In addition, Microsoft Windows 8 actively blocks installations of 2012 versions of Avira's products, although users can upgrade to the 2013 versions for free.

Avira makes one of the world's most-used antivirus applications. According to a report from OPSWAT, in the third quarter of 2012, Avira had the third highest global antivirus market share, commanding 12% of the market -- up 3% from the second quarter of the year -- and following Avast (18%) and Microsoft (14%), while placing ahead of ESET (11%) and Symantec (10%).

Which antivirus firms have Windows 8-compatible software? As of November 8, independent testing firm AV-TEST released a list of antivirus products that are compatible with Windows 8, albeit with some caveats. "Products on the list have been carefully tested by their developers, are fully supported by their vendors and reviewed by AV-TEST in the areas of protection, repair, and usability," said AV-TEST. "However, not all products are supporting all new Windows 8 features -- like the new user interface -- yet."

But while the top 10 antivirus vendors -- based on OPSWAT's market share report -- all make the AV-TEST compatibility list, Avira's products are absent. That said, The Register reported that user feedback indicates that Avira isn't the only product encountering Windows 8 compatibility hiccups, and even products listed as being compatible aren't necessary stable.

Clearly, however, Avira missed the ball on ensuring that its flagship product was Windows 8-compatible in time for the new operating system's launch last month. Mustaca detailed in part what had gone wrong for Avira's developers: "The Windows 8 operating system, and its equivalent in the server area called Windows Server 2012, have a completely new architecture. Their architecture forces the software which runs on them to make significant changes in the frameworks and the APIs -- application programming interfaces -- used to write the software."

Going forward, Avira will try and make its product's able to integrate with the Windows 8 Application Center, through which users will be able to activate or deactivate the product, update the product, or purchase a top-up license. Regardless, a support document from Avira said that now, "as far as we could test, our software provides the protection it was designed for, it can update properly so that the latest virus signatures and engine are reliably delivered and inform the user about the issues encountered."

Once Avira gets those issues ironed out, Mustaca said the company will submit its product for reevaluation by Microsoft in the hope that it will sign off on the software as being compatible with Windows 8. Company officials expect to make that submission in the coming weeks.

"We will continue to rollout (sic) patches in the next few weeks," Mustaca said. "We hope to be able to remove very soon the popup at the beginning the installation which informs the user that we don't officially support this operating system."

[ Get expert guidance on Microsoft Windows 8. InformationWeek's Windows 8 Super Guide rounds up the key news, analysis, and reviews that you need. ]

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
crushkittykitty
50%
50%
crushkittykitty,
User Rank: Apprentice
11/19/2012 | 3:48:04 PM
re: Windows 8 Compatibility Plagues Antivirus Tools
lol or you could just run Ubuntu and not worry about it, Been running Ubuntu for 4 years and have yet to get a virus, malware, And the cost? Its a free operating system, Does everything Windows does and more. Best part is you have choices if you donG«÷t like the desktop design you can just switch to an older style desktop. You can run it beside your windows or run it off a usb..
here is a good place to start http://ubuntutheotheros.webs.c...
want to just see what its about go here https://www.youtube.com/watch?...
need help there is always help just drop me a email, or you can go to the forums and there is always someone willing to help get you going.
RSL
50%
50%
RSL,
User Rank: Apprentice
11/19/2012 | 1:50:05 PM
re: Windows 8 Compatibility Plagues Antivirus Tools
Information Week -

How can the public or myself continue to regard you as a source of news, when you slant and can't even get a headline correct? This is a repetitive item on your pages, and really makes me and other IT professionals question whether to continue to read your publications.

How about "Avira AV not ready for Windows 8 yet?"

Get it right - this ain't rocket science...
Error105
50%
50%
Error105,
User Rank: Apprentice
11/16/2012 | 6:11:28 PM
re: Windows 8 Compatibility Plagues Antivirus Tools
AVG 2013 works great on Windows 8. Now if only Windows 8 worked great with everything else..
Register for Dark Reading Newsletters
White Papers
Cartoon
Current Issue
Dark Reading Tech Digest, Dec. 19, 2014
Software-defined networking can be a net plus for security. The key: Work with the network team to implement gradually, test as you go, and take the opportunity to overhaul your security strategy.
Flash Poll
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2010-5075
Published: 2014-12-27
Integer overflow in aswFW.sys 5.0.594.0 in Avast! Internet Security 5.0 Korean Trial allows local users to cause a denial of service (memory corruption and panic) via a crafted IOCTL_ASWFW_COMM_PIDINFO_RESULTS DeviceIoControl request to \\.\aswFW.

CVE-2011-4720
Published: 2014-12-27
Hillstone HS TFTP Server 1.3.2 allows remote attackers to cause a denial of service (daemon crash) via a long filename in a (1) RRQ or (2) WRQ operation.

CVE-2011-4722
Published: 2014-12-27
Directory traversal vulnerability in the TFTP Server 1.0.0.24 in Ipswitch WhatsUp Gold allows remote attackers to read arbitrary files via a .. (dot dot) in the Filename field of an RRQ operation.

CVE-2012-1203
Published: 2014-12-27
Cross-site request forgery (CSRF) vulnerability in starnet/index.php in SyndeoCMS 3.0 and earlier allows remote attackers to hijack the authentication of administrators for requests that add user accounts via a save_user action.

CVE-2012-1302
Published: 2014-12-27
Multiple cross-site scripting (XSS) vulnerabilities in amMap 2.6.3 allow remote attackers to inject arbitrary web script or HTML via the (1) data_file or (2) settings_file parameter to ammap.swf, or (3) the data_file parameter to amtimeline.swf.

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
Join us Wednesday, Dec. 17 at 1 p.m. Eastern Time to hear what employers are really looking for in a chief information security officer -- it may not be what you think.