Symantec has reported glitches in its antivirus software that could allow hackers to launch denial-of-service attacks on computers running the applications.
In a notice posted on its Web site this week, Symantec detailed two similar vulnerabilities found in its Norton AntiVirus software, which is sold on its own or bundled in Norton Internet Security and Norton System Works. The flaws, which could lead to computers crashing or slowing severely if attacked, are limited to versions of the software released for 2004 and 2005.
The Information-Technology Promotion Agency of Japan, a government-affiliated tech watchdog group, identified the first instance of the problem in the AutoProtect feature of the Norton AntiVirus consumer product, Symantec said. AutoProtect is used to scan files for viruses, Trojan attacks and worms.
The flaw essentially causes Symantec's software to crash when it is asked to inspect a file specifically designed to exploit the flaw. The file could be submitted either remotely from outside a system or internally by someone with physical access to a computer, Symantec said.
The second flaw, discovered by the Japan Computer Emergency Response team, can be used to launch denial-of-service attacks by scanning specific file modifications using the SmartScan feature in Norton AntiVirus. Symantec said that any malicious use of that vulnerability would specifically require someone with authorized access to a computer to exploit the issue. SmartScan is designed to scour for viruses hidden in file extensions, as well as in executable and document files.
No attacks related to either problem have been reported so far, according to Symantec. The company also said in its warning that both vulnerabilities are "low impact" threats to its customers.
Cupertino, Calif.-based Symantec said it has informed its customers of the problems and has issued patches to correct the flaws, including sending out an automated fix to subscribers to its Automatic LiveUpdate service. The company recommended that people who have not already applied the patches do so immediately to protect against potential attacks.
We wife had Norton System Works 2004 and it was cheaper to buy the 2005 than to get the new Anti Virus subscription... But the damned thing keeps saying it needs to uninstall the old version but fails. I've removed every key that I can find referencing Norton or Symantec from the Registry but no dice.
We wound up install Avast Antivirus and its nice. Other than lacking the means to kick off a system scan from a bat file or automatically its great. It finds stuff that NSW/AV never found.
Web giant is spending $120 million to beef up its Mountain View, Calif., headquarters, according to filings with the city reviewed by the San Jose Mercury News.
The Samsung Galaxy Mini 2 S6500 could make its debut at the Mobile World Congress in Barcelona later this month, according to a leaked promotional image.
MIT creates a simulation to celebrate the 50th anniversary of Spacewar. A relic of the early days of minicomputers, it was one of the first computer video games and set the stage for many others, including Asteroids.
And once they do the bulk of their problems mysteriously go away.
We wound up install Avast Antivirus and its nice. Other than lacking the means to kick off a system scan from a bat file or automatically its great. It finds stuff that NSW/AV never found.