Worm Found In Symantec AntiVirus

profdlpprofdlp The Holy City Of Westlake, Ohio
edited May 2006 in Science & Tech
It's going to be a busy day for quite a few Network Administrators, though Symantec has been quick to assure users of the Norton versions of their AntiVirus program that they are not vulnerable to this exploit.

Stay tuned for updates as they become available.
logo_nav.jpg
A gaping security flaw in the latest versions of Symantec's anti-virus software suite could put millions of users at risk of a debilitating worm attack, Internet security experts warned May 25.

Researchers at eEye Digital Security, the company that discovered the flaw, said it could be exploited by remote hackers to take complete control of the target machine "without any user action."

"This is definitely wormable. Once exploited, you get a command shell that gives you complete access to the machine. You can remove, edit or destroy files at will," said eEye Digital Security spokesperson Mike Puterbaugh.

"We have confirmed that an attacker can execute code without the user clicking or opening anything," Puterbaugh said.
Source: eWeek

Comments

  • JengoJengo Pasco, WA | USA
    edited May 2006
    Lol Lol Lol
  • CycloniteCyclonite Tampa, Florida Icrontian
    edited May 2006
    And we're halfway through a Symantec 10 update on our servers at work. Haha. *Sigh*
  • profdlpprofdlp The Holy City Of Westlake, Ohio
    edited May 2006
    UPDATE:

    InformationWeek reports that Symantec has fully patched the exploit.
    A stack overflow in several products, including its anti-virus family, was fully patched as of Sunday, according to an updated advisory on Symantec's Web site.
Sign In or Register to comment.