Asarnil2006-05-27 16:16:44
I figured I would put the word out about this as I know some people do actually still use Norton's software on their systems.
Security research firm eEye warned Thursday that a high-risk vulnerability exists within Symantec's Norton AntiVirus 10.x that could allow for code execution. According to an advisory posted on eEye's Web site, the flaw does not require any user interaction to be exploited.
Especially troubling is the fact that that after the vulnerability is exploited, a hacker gains access to a command shell. This means that the attacker would be able to perform just about any action, and opens up the possibility of a worm automatically infecting systems.
The problem potentially affects millions of Symantec users, according to researchers. Over 200 million systems use Symantec's antivirus software.
Source
Security research firm eEye warned Thursday that a high-risk vulnerability exists within Symantec's Norton AntiVirus 10.x that could allow for code execution. According to an advisory posted on eEye's Web site, the flaw does not require any user interaction to be exploited.
Especially troubling is the fact that that after the vulnerability is exploited, a hacker gains access to a command shell. This means that the attacker would be able to perform just about any action, and opens up the possibility of a worm automatically infecting systems.
The problem potentially affects millions of Symantec users, according to researchers. Over 200 million systems use Symantec's antivirus software.
Source
Verithrax2006-05-28 00:43:54
*snuggles Ubuntu and puts on Nelson mask*
HA-HA!
HA-HA!
Sylphas2006-05-29 15:04:14
QUOTE(Verithrax @ May 27 2006, 08:43 PM) 291700
*snuggles Ubuntu and puts on Nelson mask*
HA-HA!
HA-HA!
Daganev2006-05-29 18:04:55
If your going to post that, it would help if you posted the fix too!
http://www.eweek.com/article2/0,1895,1968603,00.asp
http://www.eweek.com/article2/0,1895,1968603,00.asp
