https://forums.comodo.com/news-announcements-feedback-cis/cis-58-serious-bug-part-1-2-merged-t77374.0.html
This bug is still not fixed. Its been a long time. Devs had said it will be fixed in the upcoming version. Its 5.9 now. They still didn’t fixed it after so long time. Always careless with the AV part.
Thanx
Naren
Are you guys not having this bug?
The mentioned race condition in that topic was solved with a subsequent release of v5.8:
Hi Guys,
We are excited to announce that COMODO Internet Security 2012 has just been released!
This is the fastest, lightest and the strongest CIS that has ever been released.
We would like to thank all of our BETA testers whose feedback made this release possible.
What’s new in COMODO Internet Security 2012?
NEW! Simplified installation experience
NEW! Seamless integration with COMODO ESM 2.0 Business Edition
NEW! Enhanced protection mode: Defense+ is now stronger in 64 bit operating systems
NEW! New options for popup alerts and antivirus alerts
IMPROVED! Look and feel
IMPROVED! Resource consumption and performance
FIXED! Firewall does not work properly on Bluetooth PAN adapters
FIXED! Antivirus crashes on files that reside on bad sectors
FIXED! Various race conditions exploited by malware to evade Defense+
New in CIS 5.8.213334.2131
FIXED! CMC is not shown properly
FIXED! Startup folders are not configured for all users
Updated 10/20/2011: Program updates are released as of today.
Updating from CIS 5.5 to CIS 5.8
There will be a 2 stage updating mechanism for old users. The initial update will be updating the updater to the latest version which is capable of upgrading to CIS 5.8.
Updating from CIS 5.8.x.2124 to CIS 5.8.x.2131
What do you mean here?
I am talking of the AV bug mentioned in the thread which is still not fixed & its been a long time.
Thanx
Naren
If this is the bug you referring to, about the race conditions, then it is already fixed in a subsequent release of 5.8
I see only one real issue here: When malware is detected on another volume than quarantined folder(Or sometimes in the same volume) in stateful mode, quarantining fails depending on some race conditions. We are investigating it however this issue doesnt mean malware is not detected or blocked. It is blocked. Actually the issue is it is blocked too much so that even CIS itself cant access it. So it will be handled with the next release.
The sample you sent us before is NOT a sample but a self-extracting archive. Thats why it is detected on-demand. Realtime will detect it only when it is extracted and it does so. Again its not a bug or anything.
I am seeing a lot of comments like “hey i downloaded something and its not detected.” It must be a serious bug. No it is not.
Stateful mode analyzes a file only if it is being loaded to memory. What does this mean? This means if there is no chance of infection, there is no need to scan. For exmaple, if you are trying to delete a file, there is no need to scan it. If you are moving a file to recycle bin, its not going to be scanned etc.
There are many optimizations similar to these. However if you do not prefer and want a old school on-access scanning with minimal optimizations, you can always set realtime scanning to on-access mode.
So its not a bug but a feature.