More holes found in Symantec security software

Bugs scuttle from under the patched rug

By INQUIRER staff

Thu Apr 22 2004, 10:12

FOUR MORE critical bugs have been found in three of Symantec's security products.

The four vulnerabilities affect Norton Internet Security 2004, Norton Internet Security 2004 Professional, and Norton Personal Firewall 2004.

Security firm eEye Digital Security spotted the flaws but is refusing to issue too many details until Symantec gets around to issuing patches.

Three faults were remotely-exploitable vulnerabilities that allowed attackers to compromise default installations of the affected software and gain access of the host machine.

The fourth is a remotely-exploitable vulnerability that allows an anonymous attacker to execute a severe denial-of-service attack against systems running default installations of the affected software.

Symantec has been slow in patching a vulnerability eEye told it to fix 44 days ago. µ

McAfee admits to flaws in its Saas Total Protection Allows execute code control and spam distribution Thursday, 19 January 2012, 12:18 PM Read more	Microsoft’s January Patch Tuesday fixes a critical Windows Media flaw Totals eight vulnerabilities Wednesday, 11 January 2012, 16:26 PM Read more
The INQUIRER review of the year A look back at the big news stories of 2011 Friday, 23 December 2011, 08:00 AM Read more	Microsoft will patch critical IE and .NET bugs next week Eight bulletins cover two dozen flaws Friday, 7 October 2011, 16:27 PM Read more
Wordpress blogs are at risk Hole found in a popular third-party script Wednesday, 3 August 2011, 15:11 PM Read more	Microsoft fixes Pwn2own Internet Explorer hole Along with 63 other software vulnerablities Wednesday, 13 April 2011, 11:14 AM Read more

Comments

There are no comments submitted yet. Do you have an interesting opinion? Then be the first to post a comment.

INQ White papers

Databases

Network management

Security

Service oriented architecture

Storage

INQ Jobs

3 x ASP .Net / VB.Net Deve

VB.Net / ASP.Net .Net Devel...

INQ Poll

Authorities in several countries raided Megaupload recently, shut down all of its services, seized hundreds of servers and arrested several of its executives on criminal charges.

Do you think the move was justified?

Yes, companies should suffer an immediate death penalty upon being accused of copyright infringement.

Yes, the coppers said the company was breaking the law so it must be guilty.

No, the company and the people accused are innocent until proven guilty.

No, the company had millions of customers who have been harmed by having access to their data files cut off.

I don't care, I never used Megaupload anyway.

View other polls

© Incisive Media Investments Limited 2012, Published by Incisive Financial Publishing Limited, Haymarket House, 28-29 Haymarket, London SW1Y 4RX, are companies registered in England and Wales with company registration numbers 04252091 & 04252093

SEARCH :

Site Credentials:

Business & Technology websites:

Business research resources:

Products:

Investment Market IT websites:

Find out what you are worth:

Salary Calculator

Search for a job:

Recruitment Agency A-Z Directory

Accreditations:

Digital Publisher of the Year 2010

More holes found in Symantec security software

Share this:

RIM Playbook OS 2.0 and Blackberry 7.1 video demo

Nokia Lumia 710 video review