Symantec antivirus products contain multiple vulnerabilities

Forums General General Discussion Windows Security Symantec antivirus products contain multiple vulnerabilities

Viewing 0 reply threads
  • Author
    Posts
    • #45037
      hackerman1
      Moderator

        Alert (TA16-187A)

        Symantec and Norton Security Products Contain Critical Vulnerabilities.

        Systems Affected
        All Symantec and Norton branded antivirus products

        Overview
        Symantec and Norton branded antivirus products contain multiple vulnerabilities.
        Some of these products are in widespread use throughout government and industry.
        Exploitation of these vulnerabilities could allow a remote attacker to take control of an affected system.

        Impact
        The large number of products affected (24 products), across multiple platforms (OSX, Windows, and Linux),
        and the severity of these vulnerabilities (remote code execution at root or SYSTEM privilege),
        make this a very serious event.
        A remote, unauthenticated attacker may be able to run arbitrary code at root or SYSTEM privileges by taking advantage of these vulnerabilities.
        Some of the vulnerabilities require no user interaction and are network-aware, which could result in a wormable-event.

        Solution
        Symantec has provided patches or hotfixes to these vulnerabilities in their SYM16-008 and SYM16-010 security advisories.

        US-CERT encourages users and network administrators to patch Symantec or Norton antivirus products immediately.
        While there has been no evidence of exploitation, the ease of attack, widespread nature of the products,
        and severity of the exploit may make this vulnerability a popular target.

        More information:URL=https://www.us-cert.gov/ncas/alerts/TA16-187A]US-CERT, TA16-187A[/URL]

    Viewing 0 reply threads
    • You must be logged in to reply to this topic.