Symantec vulnerability discovered - and fixed
Buffer overflow vulnerability found in corporate AV software.
Symantec was quick to respond late last month to the discovery of a potentially critical vulnerability in the latest versions of its corporate anti-virus software.
The stack overflow vulnerability, which was discovered by researchers at eEye Digital Security in Symantec Client Security 3.x and Symantec AntiVirus Corporate Edition 10.x, would potentially allow remote attackers to execute code on the affected machine - without any user interaction.
Symantec responded to the discovery by releasing a series of intrusion prevention signatures for the affected versions of the software. The company was also quick to point out that it was not aware of any customers affected by the vulnerability, or of any exploits of the vulnerability.
01 June 2006
Tags:
del.icio.us
digg this
Poll
Do you use the same password(s) across multiple websites?Leave a comment
View 4 comments

Virus Bulletin
In this month's magazine:- Social networking meets social engineering
- Flying solo
- Geneva convention
- 7th German Anti Spam Summit 2009
- Anti-phishing landing page: turning a 404 into a teachable moment
- An update on spamming botnets: are we losing the war?
- Windows Server 2008 Standard Edition SP2 x86

Subscribe now!
Virus Bulletin currently has 190,988 registered users.

