Skip the navigation

Security holes uncovered in Symantec, Norton products

By Kieren McCarthy, Techworld.com
May 13, 2004 12:00 PM ET

TechWorld.com - Almost the entire range of Symantec Corp. security software, from Norton Internet Security through to the Symantec Firewall, requires urgent updates, the company has warned, after four critical vulnerabilities were found by security company eEye Digital Security Inc.
One of the holes remains open even with all ports filtered and intrusion rules set thanks to a separate design flaw, eEye has warned. This makes it an almost certain target for worm writers, one of which -- if history is any indication -- may be put out on the Internet within 24 hours.
Symantec was informed of the holes on April 19, and provided patches for them today. The patches should be installed as part of the Live Update feature in most packages, but some will require the manual download and installation of patches, and those that have automatic updating switched off will need to run Live Update as soon as possible.
EEye explains in its advisories that the holes, all of which are within the symdns.sys driver, allow system access, the opportunity to create a denial-of-service attack and -- most serious -- an open door to a worm.
In connection with one vulnerability, eEye warned: "With the ability to freely execute code at the Ring 0 privilege level, there are literally no boundaries for an attacker. It should also be noted, that due to a separate design flaw in the firewalls handling of incoming packets, this attack can be successfully performed with all ports filtered, and all intrusion rules set."
Security company Secunia has warned that the last time such a hole appeared -- in ISS's security software, affecting how it handled ICQ traffic -- a worm, Witty, appeared just a day after the exploit was made public.
Symantec has more detail on the flaws with links to patches on its Web site.

Reprinted with permission from TechWorld.com. Copyright 2012 IDG, all rights reserved.
What is Tech Briefcase?
TechBriefcase is a new, free service where IT Professionals can Search, Store and Share IT white papers and content like this. Learn more
Bookmark content
Speed up your research efforts with content across the web.
Search and Store
Find the white papers you need. Create folders for any topic.
View Anywhere
Open your briefcase on your iPhone, tablet or desktop. Share with colleagues.
Don't have an account yet?
Additional Resources
Security KnowledgeVault
WHITE PAPER
Security is not an option. This KnowledgeVault Series offers professional advice how to be proactive in the fight against cybercrimes and multi-layered security threats; how to adopt a holistic approach to protecting and managing data; and how to hire a qualified security assessor. Make security your Number 1 priority.

Read now.

Cut Communications Costs Once and for All
WHITE PAPER
New IP-based communications systems are being deployed by small and midsized businesses at a rapid rate. Learn how these organizations are enabling faster responsiveness, creating better customer experiences, speeding office or mobile interactions, and dramatically reducing existing communications costs.

Read now.

Malware and Vulnerabilities White Papers
The Reasons CMDBs Don't Work: A Comparative Report of Traditional CMDBs and ITinvolve's Revolutionary Approach
There is no shortage of reasons why CMDB initiatives fail. A lack of trust in the data, the time consuming nature of these...
How Blade Centers Impact Data Center Management and Agility
This paper examines enterprise adoption of blade servers in the US, UK and China; the benefits of blade server use; and the connection...
Nemertes Research PilotHouse Awards: Server for Virtualization
The Nemertes Research PilotHouse Awards provide insight on the performance of technology vendors, according to feedback from IT decision makers who use their...
Gartner Magic Quadrant for Blade Servers
The market for blade servers is becoming ever more complex and diverse due to the convergence of related modular form factors, a fast-growing...
Real Fabrics for a Virtual World
Many factors influence what "ideal" approach organizations should take when planning to implement a fabric-based infrastructure policy. This presentation charts the likely evolution...
All Malware and Vulnerabilities White Papers
Malware and Vulnerabilities Webcasts
Today's NAS: A Solution Beyond Old Limits
Date: Tuesday, July 17, 2012 2:00 PM EDT

Traditional NAS systems don't scale beyond fixed limits. Proliferation of NAS systems leads to management...
Redefine Expectations in the Data Center
Need to do more with less? Watch this video to learn how HP ProLiant Gen8 servers can help your business deploy servers three...
Oracle Database Appliance Best Practices
Business users increasingly demand 24x7 availability of their data while IT departments face the challenge of ensuring maximum availability while operating with limited...
Data Privacy and Protection in Production Environments: New Research from Ponemon Institute
Date: Wednesday, June 13, 2012, 1:00 PM EDT / 10:00 AM PDT

In a recent study conducted by Ponemon Institute, fifty-five percent of respondents...
BMC Control-M - Single Point of Control Demo
With BMC Control-M, you schedule and manage everything - down to the very last platform and application - from one simple interface. It's...
All Malware and Vulnerabilities Webcasts
Newsletter Sign-Up

Receive the latest news test, reviews and trends on your favorite technology topics

Choose a newsletter
  1. View all newsletters | Privacy Policy
IT Jobs