Binary planting vulnerability
Some F-Secure products have been affected by a binary planting vulnerability. Under certain circumstances, an attacker can trick the system into executing a binary file that has been planted on a disk resource that the computer can access.
A fix for the problem has been distributed through the update channel for some of the affected products. No end user actions are required in these cases. User actions are needed only for products that do not support automatic update of software components.
Exploiting the vulnerability requires the ability to write a file to a disk resource accessible by the target system.
For more information about the vulnerability and the affected products, see F-Secure Security Advisory FSC-2010-4.