Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Symantec security flaws are 'as bad as it gets', claims Google's Project Zero


  • Please log in to reply
2 replies to this topic

#1 JohnC_21

JohnC_21

  • Members
  • 24,846 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:31 AM

Posted 29 June 2016 - 02:26 PM

GOOGLE'S PROJECT ZERO security group has published details of what it describes as a series of critical vulnerabilities in Symantec's Norton Antivirus product that "are as bad as it gets".

"They don't require any user interaction, they affect the default configuration, and the software runs at the highest privilege levels possible. In certain cases on Windows, vulnerable code is even loaded into the kernel, resulting in remote kernel memory corruption," said Project Zero's Tavis Ormandy in a blog post.

Frightened? You should be. Symantec uses the same core engine across all its antivirus products, including:

  • Norton Security, Norton 360, and other legacy Norton products (all platforms)
  • Symantec Endpoint Protection (all versions, all platforms)
  • Symantec Email Security (all platforms)
  • Symantec Protection Engine (all platforms)
  • Symantec Protection for SharePoint Servers

Some of these products cannot be updated automatically, and administrators must take immediate action to protect their networks. Symantec has also been so kind as to publish some security advisories for its customers.

Article

 

Time to get patchin.

 



BC AdBot (Login to Remove)

 


#2 Aura

Aura

    Bleepin' Special Ops


  • Malware Response Team
  • 19,697 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:31 AM

Posted 29 June 2016 - 02:38 PM

Symantec is done. McAfee will follow as well. ESET and Kaspersky should just take over.

animinionsmalltext.gif
unite_blue.png
Security Administrator | Sysnative Windows Update Senior Analyst | Malware Hunter | @SecurityAura
My timezone UTC-05:00 (East. Coast). If I didn't reply to you within 48 hours, please send me a PM.


#3 Ridernyc

Ridernyc

  • Members
  • 44 posts
  • OFFLINE
  •  
  • Local time:07:31 AM

Posted 03 July 2016 - 07:21 AM

This really needs to be a bigger story then it is.

 

Their security software basically let web traffic write directly to the kernel.






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users