Results 1 to 2 of 2

Thread: Symantec Anti-Virus

  1. December 2nd, 2001, 07:50 AM #1
    KaKoKoOl
    KaKoKoOl is offline
    Banned
    Join Date
    Aug 2001
    Posts
    89

    Symantec Anti-Virus

    According to a German Hacking Group Phenoelit, the tool used to update the virus defination in Symantec's antivirus products has a security hole that allows hostile code to be downloaded to PC's.

    The software LiveUpdate, which updates virus protections, has flaws in both 1.4 and 1.6 versions. The connection can be hijacked using a number of DNS attack and re-route to the server of the attacker's choice. The hacking group further explained that the code can be downloaded to the user's machine and executed, if an attacker recreates the proper directory structure on the server the connection is sent to.


    The gropu notified Symantec more than a month ago, but the companydid not immeditaely reply. Phenoelit has urged Symantes to use new Cryptographic signing methods and inform its customers about the flaw.
  2. December 2nd, 2001, 11:39 AM #2
    sebastos12
    Guest
    You in the past, man.
« Previous Thread | Next Thread »

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Forum Rules