Symantec patches corporate security hole

Symantec has released patches for a serious flaw in two of its corporate security and anti-virus products, a week after researchers revealed the vulnerability.

  • E-Mail
By  Eliot Beer Published  June 1, 2006

Symantec has released patches for a serious flaw in two of its corporate security and anti-virus products, a week after researchers revealed the vulnerability. The product updates – available on the IT security firm’s website – are for Symantec Client Security version 3.0 and above, and Symantec Antivirus Corporate Editions version 10.0 and above. The patches are for English-language versions of the products only; patches for other language versions will follow, but Symantec was unable to say when. IT research firm eEye discovered the flaw last week, with Symantec verifying it a few days later. Neither firm has released details of the vulnerability, but eEye said it had the potential to allow malicious hackers to gain control of a machine with either product installed. While the potential severity of the security hole is high, Symantec said there were no known exploits publicly available. eEye said it could allow an attack similar to the Blaster and Slammer worm outbreaks in recent years. The security firm’s popular line of Norton products, aimed at consumers, was unaffected by the flaw. Symantec has recently gone head-to-head with Microsoft on security, claiming the Redmond software giant’s attempts to break into the anti-virus and security arena with its OneCare product – released today in the US – were not a threat. “We know more about security than they [Microsoft] ever will,” Symantec CEO John Thompson said at an event last month. Information on the flaw and details of patches are available from Symantec here

Add a Comment

Your display name This field is mandatory

Your e-mail address This field is mandatory (Your e-mail address won't be published)

Security code