Can ESET protect users who are using ESET and WPS with known vulnerabilities?

[ormkun 0]

Dear Sir/Madam, I hope this message finds you well. It has come to our attention that ESET has detected vulnerabilities in the WPS software. For customers currently using ESET who have not yet updated WPS to the latest version, can ESET still protect them effectively? Thank you for your assistance. Best regards,

[Marcos 5,259]

Are you referring to WPS Office by Kingsoft and ESET Vulnerability & Patch Management which detected some vulnerabilities? If so, you must update WPS in order to patch the vulnerabilities.

[ormkun 0]

If a WPS user with vulnerabilities is unable to update, will installing ESET provide protection?

[Marcos 5,259]

Installing ESET will not patch the vulnerabilities so the software will remain vulnerable.

[ormkun 0]

How effective will installing ESET be in providing protection?

[Aryeh Goretsky 386]

Hello,

Are you referring to https://www.welivesecurity.com/en/eset-research/analysis-of-two-arbitrary-code-execution-vulnerabilities-affecting-wps-office/, @ormkun?

If so, the two vulnerabilities were patched in late May 2024 by Kingsoft with the release of WPS version 12.2.0.17119.  Malware that was exploiting the vulnerabilities is detected by ESET's software, but as my colleague @Marcos noted, updating to the latest versions of WPS should be a priority, so that the vulnerabilities are no longer present on systems using that software.

Regards,

Aryeh Goretsky