Your Ad Here Your Ad Here
Results 1 to 5 of 5

Thread: Nearly 30 Symantec Titles Open To Attack

  1. #1
    ZaZu's Avatar I know stuff ...
    Join Date
    Sep 2003
    Location
    @Home
    Posts
    1,966
    February 09, 2005 (1:59 PM EST)

    Symantec on Tuesday released patches for a vulnerability found in a large number of its products, including flagship titles such as BrightMail AntiSpam, AntiVirus Corporate Edition, and its 2004 consumer slate.

    According to rival Internet Security Systems' X-Force research group, which discovered the flaw, the bug is in the DEC2EXE module of the Symantec Antivirus Library, a part of the scanning engine that's able to peek into compressed executable files squeezed with the UPX (Ultimate Packer for eXecutables) format.

    "This vulnerability can be triggered by an unauthenticated remote attacker, without user interaction, by sending an e-mail containing a crafted UPX file to the target Symantec AntiVirus Library on client, server, and gateway implementations," said X-Force in its advisory. A successful attack could give the attacker complete control of the supposedly-protected system.

    Symantec ranked the danger as "High," while Danish security firm Secunia, which also posted a warning, rated it as "Highly Critical."

    Symantec posted a security alert on its Web site that listed the 29 vulnerable Windows (and Macintosh) products, along with recommendations to update and/or upgrade the flawed software.

    The Cupertino, Calif.-based security giant spun the news by claiming that even before ISS notified it of the vulnerability, it had already removed the DEC2EXE module from the scan engine upgrades in most of its products. It now plans to strip the offending module from all affected versions during upcoming maintenance releases.

    Even though a rival dug up the bug, there didn't seem to be any ill feelings on Symantec's part. "Symantec appreciates the actions of the X-Force research team and X-Force's Alex Wheeler in particular for identifying this issue to Symantec and their cooperation and coordination while Symantec worked to resolve all issues," the company said in a statement.


    Source

    I've just switched to Nod32 from Norton Anti-virus 2005 for anti-virus protection [not because of this]so don't have any Symantec stuff installed,thought those who might have would like to know this
    Last edited by ZaZu; 02-10-2005 at 06:29 AM.


    If you attack the establishment long enough and hard enough, they will make you a member of it.
    -- Art Buchwald --

  2. Software & Hardware   -   #2
    peat moss's Avatar Software Farmer BT Rep: +15BT Rep +15BT Rep +15
    Join Date
    May 2003
    Location
    Delta B.C. Canada
    Posts
    10,816
    Gee who do they think are Microsoft ? Not even close! But did like this statement . Shows their a class act .


    Quote : Even though a rival dug up the bug, there didn't seem to be any ill feelings on Symantec's part. "Symantec appreciates the actions of the X-Force research team and X-Force's Alex Wheeler in particular for identifying this issue to Symantec and their cooperation and coordination while Symantec worked to resolve all issues," the company said in a statement.


    Edit: off to update me Symantec ! Well major updates tonite , did last nite too so this are new . Thanks for the heads up ZaZu, much appreciated .



    Edit: My Giant antispyware notified me of a change to my start up files after installing the lastest Norton up dates . I have NSW 2005 , but using Symantec Corp Virus . Scared the shit out of me !
    Last edited by peat moss; 02-10-2005 at 06:59 AM.

  3. Software & Hardware   -   #3
    Retired
    Join Date
    Feb 2003
    Posts
    14,058
    affected Products:
    Symantec Norton Antivirus 2004 for Windows
    Symantec Norton Internet Security 2004 (pro) for Windows
    Symantec Norton System Works 2004 for Windows
    Symantec Norton Antivirus 2004 for Macintosh
    Symantec Norton Internet Security 2004 for Macintosh
    Symantec Norton System Works 2004 for Macintosh
    Symantec Norton Antivirus 9.0 for Macintosh
    Symantec Norton Internet Security for Macintosh 3.0
    Symantec Norton System Works for Macintosh 3.0
    Norton AntiVirus for Microsoft Exchange 2.1 prior to build 2.18.85
    Symantec Mail Security for Microsoft Exchange 4.0 prior to build 4.0.10.465
    Symantec Mail Security for Microsoft Exchange 4.5 prior to build 4.5.3
    Symantec AntiVirus/Filtering for Domino NT 3.1 prior to build 3.1.1
    Symantec Mail Security for Domino 4.0 prior to build 4.0.1
    Symantec AntiVirus/Filtering for Domino Ports 3.0
    (AIX) prior to build 3.0.6
    (OS400, Linux, Solaris) prior to build 3.0.7
    Symantec AntiVirus Scan Engine 4.3 prior to build 4.3.3
    Symantec AntiVirus for Network Attached Storage prior to build 4.3.3
    Symantec AntiVirus for Caching prior to build 4.3.3
    Symantec AntiVirus for SMTP 3.1 prior to build 3.1.7
    Symantec Mail Security for SMTP 4.0 prior to build 4.0.2
    Symantec Web Security 3.0 prior to build 3.0.1.70
    Symantec BrightMail AntiSpam 4.0
    Symantec BrightMail AntiSpam 5.5
    Symantec AntiVirus Corporate Edition 9.0 prior to build 9.01.1000
    Symantec AntiVirus Corporate Edition 8.01, 8.1.1
    Symantec Client Security 2.0 prior to build 9.01.1000
    Symantec Client Security 1.0, 1.0
    Symantec Gateway Security 2.0, 2.0.1 5400 Series
    Symantec Gateway Security 1.0 5300 Series


    Latest Symantec AntiVirus Corporate isnt on the list

  4. Software & Hardware   -   #4
    peat moss's Avatar Software Farmer BT Rep: +15BT Rep +15BT Rep +15
    Join Date
    May 2003
    Location
    Delta B.C. Canada
    Posts
    10,816
    The start entry was a run once . Mabye checking my products ?

  5. Software & Hardware   -   #5
    backlash's Avatar usenet lover
    Join Date
    Aug 2003
    Location
    in your dreams
    Posts
    2,167
    wow...NIS 2005 isn't affected! Yay. Always good to upgrade.

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •