Home
Current issue
Forum & Community
OneKit's Software
About us
Chat with support
[|
|
||
|
|
|
|
Home
Current issue
Forum & Community
OneKit's Software
About us
Chat with support
[ |
||
| Games | Graphics & Design | MP3 & Audio | Internet & Networks | System & Utilities | Home & Education | Business | WebDev | SoftDev |
| Reviews & Articles :: Symantec announces ActiveX vulnerability | ||||||||
| Issue: August 2007 > System & Utilities > Article "Symantec announces ActiveX vulnerability" | |||
|
|||
 |
|||
Symantec has revealed details of a vulnerability in two ActiveX controls used in its Norton Windows antivirus software.
The vulnerability was reported by security research firm Secunia as "highly critical" and Symantec urged users to update their software immediately. Norton AntiVirus 2006, Norton Internet Security 2006, Norton SystemWorks 2006 and Norton Internet Security 2005 AntiSpyware Edition are affected. Symantec's corporate security software is not affected. The problem in the ActiveX controls could allow a hacker to execute code on an affected PC. It comes about because of an input validation error, which fails to analyse incoming data for malicious commands before executing them. To exploit the vulnerability, hackers could send emails to users inviting them to click on a link to a website containing the exploit code, Symantec said. Related Links:
August 11, 2007
Author: Richard Thurston |
|
| Copyright 2003-2008 - Software Magazine, onekit.com, Legal Notices | |||||
|
Symantec announces ActiveX vulnerability
