|
|
|
Flaw
stymies Norton Internet Security
By Robert
Lemos
Staff Writer, CNET
News.com
A software component of Norton Internet Security could allow
hackers to use the application as a backdoor into a person's
computer system, security researchers warned Friday.
The flaw occurs in an ActiveX
component used by security firm Symantec's flagship desktop
security program, Norton Internet Security, according to an
advisory published by research
firm NGSSoftware. The security hole could be used to run an
attack program that would then take control of the computer that
the software was trying to protect.
"The attack can be
achieved either by encouraging the victim to visit a malicious Web
page or placing a script within...an HTML e-mail," the
advisory stated.
Symantec's Antispam software has
a similar issue caused by a different ActiveX component.
ActiveX is a Microsoft technology for creating scripts, small
programs that can add functionality to a computer or a Web site.
Symantec released fixes for the flaws that can be downloaded
from its site, using LiveUpdate,
the standard update mechanism included with the programs.
"To date, Symantec has not had any reports of any related
exploits, and exploit code has not been posted, but we will
continue to evaluate this issue," the company said in a
statement sent to CNET News.com. "Symantec issued a fix on
March 18 for customers to download via LiveUpdate."
Last December, Symantec
fixed a problem that affected a small percentage of the more
than 1.2 million users of the company's Norton Antivirus 2004,
Norton Internet Security 2004, Norton Antispam 2004 and Norton
SystemWorks 2004. For those customers, the applications would
mistakenly ask for a product activation code every time a PC was
rebooted, and eventually the program would become locked.
|
|
Security Products:
HIPAA
Step by Step Training
April
20th and 22nd in Hoffman Estates and Naperville
PestPatrol
is a powerful security and personal privacy tool that
detects and eliminates destructive pests like trojans, spyware,
adware and hacker tools. It complements your anti-virus and
firewall software, extending your protection against
non-viral malicious software that can evade your existing
security and invade your personal privacy. These pests often
lurk silently on your computer until something – or
someone – sets them off. When that happens, you could lose
passwords, personal data, credit card numbers, and - if you
telecommute and connect to your office via a VPN - open up a
back door for the hacker into your entire company network. Click
here for Pest Patrol
Intrusion
Detection Systems
Vulnerability
Scanners
Firewalls
 | Netscreen |
| Checkpoint |
Management
Virus
Control
| Mail Marshall |
Services
| Security audit |
| Perimeter Vulnerability Scan |
| Router/ switch optimization for
security |
| Firewall checking and configuration |
| VPN Design and Implementation |
| Network design |
| network based application analysis |
| Network Baselining |
| Security baselining |
|
|
This mailing has been performed by Aavex Technology
Corporation
42w588 Still Meadows Lane, Elburn IL 60119 USA, 630-365-0025 in compliance
with the "CAN-SPAM Act of 2003", approved and signed by
the president of The United States of America on Dec. 16, 2003. For this
reason, this email cannot be considered SPAM This newsletter contains
commercial advertisement.
|
|
