Security Market Segment LS
Saturday, 27 May 2006 08:32

Symantec sees eye-to-eye with eEye on critical antivirus flaw


Symantec has acknowledged the vulnerability in its Symantec Client Security and Symantec AntiVirus Corporate Edition (note: Norton Antivirus is not affected as previously reported) as a high impact risk and has issued a range of intrusion detection signatures (IDS) and intrusion prevention signatures as an interim fix for users.

Researchers at intrusion prevention software company eEye Digital Security brought the vulnerability to the attention of Symantec and the world yesterday. Symantec has since confirmed the vulnerability as genuine and affecting its Symantec Client Security 3.1 and Antivirus Corporate Edition 10.1 products.

"Symantec was notified that Symantec Client Security and Symantec AntiVirus Corporate Edition are susceptible to a potential stack overflow. Exploiting this overflow successfully could potentially cause a system crash, or allow a remote or local attacker to execute arbitrary code with System level rights on the affected system," a Symantec statement says.

"Symantec would like to thank eEye Digital Security for reporting this issue, and working with us on the resolution."

Symantec has released a range of IDS to signatures, available to customers via its LiveUpdate service, to detect attempts to exploit the flaw. It has also released a range of IPS signatures via LiveUpdate saying:

"As a mitigation strategy, Symantec Security Response has also made available IPS signatures for Symantec Client Security to protect against exploits of the described vulnerability. Symantec recommends customers immediately apply the latest Security Update to protect against potential related attacks."

WEBINAR event: IT Alerting Best Practices 27 MAY 2PM AEST

LogicMonitor, the cloud-based IT infrastructure monitoring and intelligence platform, is hosting an online event at 2PM on May 27th aimed at educating IT administrators, managers and leaders about IT and network alerts.

This free webinar will share best practices for setting network alerts, negating alert fatigue, optimising an alerting strategy and proactive monitoring.

The event will start at 2pm AEST. Topics will include:

- Setting alert routing and thresholds

- Avoiding alert and email overload

- Learning from missed alerts

- Managing downtime effectively

The webinar will run for approximately one hour. Recordings will be made available to anyone who registers but cannot make the live event.



Security requirements such as confidentiality, integrity and authentication have become mandatory in most industries.

Data encryption methods previously used only by military and intelligence services have become common practice in all data transfer networks across all platforms, in all industries where information is sensitive and vital (financial and government institutions, critical infrastructure, data centres, and service providers).

Get the full details on Layer-1 encryption solutions straight from PacketLight’s optical networks experts.

This white paper titled, “When 1% of the Light Equals 100% of the Information” is a must read for anyone within the fiber optics, cybersecurity or related industry sectors.

To access click Download here.


Stan Beer


Stan Beer co-founded iTWire in 2005. With 30 plus years of experience working in IT and Australian technology media, Beer has published articles in most of the IT publications that have mattered, including the AFR, The Australian, SMH, The Age, as well as a multitude of trade publications.



Recent Comments