Friday, May 26, 2006
Dismayingly vague report of a Symantec vulnerability
According to an annoucement from security firm eEye, some versions of Symantec's antivirus and security products have a "remote vulnerability",
Unfortunately they don't say how it's triggered, whether a firewall would prevent the whole issue, or whether any version other than Symantec Antivirus 10.x and Symantec Client Security 3 are vulnerable.
The good news is that nobody's using this opening to hurt other people's machines. That we know of.
I'm not sure what to recommend. Runnning without antivirus on a Windows machine is not a good idea for most people. Certainly keep an eye on Symantec's news page, which I think is for the same issue. If you were thinking of switching antivirus products this is as good a time as any, but don't expect too much in the way of security improvements: even the antivirus program I use had a security problem just a year and a half ago.
UPDATE 5/28:
Symantec has released fixes.
|
Unfortunately they don't say how it's triggered, whether a firewall would prevent the whole issue, or whether any version other than Symantec Antivirus 10.x and Symantec Client Security 3 are vulnerable.
The good news is that nobody's using this opening to hurt other people's machines. That we know of.
I'm not sure what to recommend. Runnning without antivirus on a Windows machine is not a good idea for most people. Certainly keep an eye on Symantec's news page, which I think is for the same issue. If you were thinking of switching antivirus products this is as good a time as any, but don't expect too much in the way of security improvements: even the antivirus program I use had a security problem just a year and a half ago.
UPDATE 5/28:
Symantec has released fixes.
# posted by Frederick @ 3:22 PM Email to a friend:
Haloscan: they provide trackback