Saw something while reading the news about a new SSL/TLS vulnerability called the FREAK attack. Being curious, I tested my computers using the https://freakattack.com/ test page. This page reported that both Firefox browser and Internet Explorer browser were vulnerable on my computers. I didn’t expect the Firefox browser to fail, so I searched the Firefox forum and found a post saying an Avast update fixed this. Which sounded curious, but turned out to be true. Updating Avast program and virus definitions fixes the vulnerability for both Firefox and Internet Explorer on my computers. Thanks for the updated program (2015.10.2.2214)!

I can confirm this. IE11 and FF 36.0.1 are not vulnerable with Avast 2015.10.2.2214.

Opera 12.17
Windows XP sp3
All shields disabled
Not vulnerable ;D

Nice!!

IE 11 (11.0.16) is vulnerable here with Avast 2015.10.2.2214. Maybe that’s because I am not using HTTPS scanning by Avast

Firefox 37 beta and Chrome 41 are safe from the attack.

Go Opera! Works for me as well.

What if you have enabled your shields?
You probably want to have real time scanning of files. But once your (or at least: MY) Avast is enabled I am vulnerable. Without shields I’m safe. Well, at least for FREAK. Not for files with virusses :-\

Program version 2015.10.0.2208 (virus definitions 150312-0)

You should check the update thread at the top of the forum, latest version is 2015.10.2.2214 so you need to update https://forum.avast.com/index.php?topic=167184.0

Thanks. Just when I noted my own version I thought “Hm, there might be a new version”. Which there was indeed. And it fixed it.

Nevertheless, primarily wanted to point out that testing with shields disabled isn’t enough. Enabling shields can make it worse (if you’re not up to date, like I was :-[)