Vulnerability in all Symantec Antivirus

Tavis Ormandy, is perhaps the most well-known security researcher of its Project Zero division , καθώς κατά καιρούς έχει ανακαλύψει ευπάθειες σε πολύ διάσημα προϊόντα και υπηρεσίες. Αυτή τη φορά ο ερευνητής ανακάλυψε και βοήθησε τη Symantec να καθορίσει ένα σοβαρό ζήτημα ασφάλειας που επηρέαζε το Antivirus Engine, τον πυρήνα πολλών προϊόντων ασφαλείας της εταιρείας.Symantec

Ο Ormandy εξηγεί ότι, σε ορισμένες περιπτώσεις, όταν ένας ορισμένος τύπος δεδομένων φτάνει στο Symantec Antivirus Engine (SAE), το προϊόν χειρίζεται αυτά τα αρχεία με έναν μη ασφαλή τρόπο που οδηγεί σε buffer .

"When parsing executables are packaged from an early version of aspack, buffer overflow can occur in the core of the Symantec Antivirus engine used in most Symantec and Norton branded products." says Ormandy.

So the CVE--2208 affects almost all Symantec products, including Symantec Endpoint Antivirus, Norton Antivirus, Symantec Scan Engine, and Symantec Email Security.

Ormandy argues that, theoretically at least, the error should affect any other product Symantec has developed with the SAE.

The researcher uncovered the problem with the security company, and she released a patch that all customers need to download and install.

iGuRu.gr The Best Technology Site in Greecefgns

every publication, directly to your inbox

Join the 2.100 registrants.

Written by Dimitris

Dimitris hates on Mondays .....

Leave a reply

Your email address is not published. Required fields are mentioned with *

Your message will not be published if:
1. Contains insulting, defamatory, racist, offensive or inappropriate comments.
2. Causes harm to minors.
3. It interferes with the privacy and individual and social rights of other users.
4. Advertises products or services or websites.
5. Contains personal information (address, phone, etc.).