Our product development group has put out a bulletin regarding a security hole affecting several of our antivirus products.

We urge all affected users to apply the patch, before some clown virus-writer tries to exploit it. This hole is related to a bug in our routine that unpacks ARJ archive files. The bug would allow an attacker to execute code when his ARJ file is scanned.

Also, thanks to ISS X-Force for the professional way they handled this issue with us.