issues with Kaspersky antivirus

janusz

Registered Developer

Join Date: Feb 2008
Posts: 190

1 Aug 2018, 04:21

Hi,

Kaspersky antivirus adds it's own <script> tag to every file that looks like a HTML and breaking loginRequired marker by changing <SCRIPT> in loginStatusCodeMarker to lowercase so it can't be found by RPCManager.

Code:

<SCRIPT type="text/javascript" src="https://ff.kis.v2.scr.kaspersky-labs.com/1B82A2B9-21D4-6F43-9672-7E1603EB2B24/main.js" charset="UTF-8"></script><script>//'"]]>>isc_loginRequired while (!window.isc && document.domain.indexOf(".") != -1) { try { parent.isc; break; } catch (e) { document.domain = document.domain.replace(/.*?\./, ""); } } var isc = top.isc ? top.isc : window.opener ? window.opener.isc : null; if (isc) isc.RPCManager.delayCall("handleLoginRequired", [window]); </SCRIPT>

Please consider making detection of loginStatusCodeMarker more flexible.

Best regards,
Janusz

Tags: None

Isomorphic

Administrator

Join Date: May 2006

Posts: 54650
#2

1 Aug 2018, 11:55

Since we need to scan for the loginRequiredMarker in any possible response, we've taken some pains to ensure that this is extremely efficient. Checking for some external tool clumsily modifying our marker would slow things down. So please either file a bug with Kaspersky about their error here, or customize the loginRequiredMarker so it already lowercase, as a workaround for Kaspersky's bug.
Comment

Previous template Next

Announcement

issues with Kaspersky antivirus

Comment