By design, antivirus products introduce a vast attack surface to a hostile environment. The vendors of these products have a responsibility to uphold the highest secure development standards possible to minimize the potential for harm caused by their software. This second paper in a series on Sophos internals applies the results previously presented to assess the increased threat Sophos customers face. This paper is intended for a technical audience, and describes the process a sophisticated attacker would take when targeting Sophos users.
You can download it from the following link: https://packetstormsecurity.com/files/download/117906/sophailv2.pdf
Source: https://packetstormsecurity.com/files/117906/Sophail-Applied-Attacks-Against-Sophos-Antivirus.html