Advertisement
Promo

Security threats Toolkit in association with http://ad.doubleclick.net/clk;214682528;14505427;f?http://uk.blackberry.com/ataglance/security/

Norton AV flaw opens door to hackers

Munir Kotadia ZDNet Australia

Published: 19 Oct 2004 11:30 BST

  • Email
  • Trackback
  • Clip Link
  • Print friendly
  • Post Comment

Norton AntiVirus, one of Symantec's most popular Internet security products, contains a security flaw that could allow malicious users to easily disable the software's auto-protect feature, according to an advisory by security Web site Secunia.

According to Secunia, the software's auto-protect function, which is designed to recognise and halt suspicious behaviour in real-time, contains an error that could allow a malicious user to disable it altogether.

"This can be exploited by an unprivileged user to force the auto-protection to be disabled… It can further be exploited to download and execute malicious files that normally would be caught by the antivirus program," the advisory warned.

Norton Internet Security 2004 is affected but Norton Internet Security 2004 Professional and Symantec Norton AntiVirus 2004 are also likely to be vulnerable.

Security researcher Daniel Milisic, who has been credited with discovering the problem, last week criticised Symantec's Norton AntiVirus on a security mailing list.

"Symantec should be publicly flogged for trying to sell this inferior AV software to home users, especially knowing they have a decently workable AV product in their Enterprise line… It's unbelievable that Symantec sells a product that operates this poorly," said Milisic.

ZDNet Australia contacted Symantec about the problem but the company refused to comment. A spokesperson told ZDNet Australia that the company would "know more in 24 hours".

ZDNet Australia's Munir Kotadia reported from Sydney. For more coverage from ZDNet Australia, click here.

  • Email
  • Trackback
  • Clip Link
  • Print friendly
  • Post Comment

Did you find this article useful?
80 out of 132 people found this useful


Talkback

Post a comment


Full Talkback thread

5 comments

  1. I'm sure no one has posted because every "real" pr... Anonymous
  2. Hackers can obviously infiltrate the best systems... Rachel Fenwick
  3. I'm a professional hacker... I can surpass no... professional hacker
  4. I run a small computer consulting firm. I used to... Bill Woelk
  5. I run a computer business and have had trouble wi... Anonymous

Related Links

More In Security threats



Company/Topic Alerts

Create a new alert from the list below:




Related Jobs

Infrastructure Analyst - Thames Valley - Circa 50,000 - 60,00

TECHNICAL PRE SALES CONSULTANT

Associate Software Engineer

Related BlackBerry Resources

Protecting the BlackBerry Device Platform Against Malware

BlackBerry Devices with Bluetooth - Security Overview

BlackBerry Enterprise Server IT Policy

BlackBerry Enterprise Solution - Security Technical Overview

BlackBerry Enterprise Solution and RSA SecurID

CIO's Guide to Mobile Security

See All White Papers

Video icon

Video

Sentry Posts Blog

Behind the Scenes: Next Gen Mobile Tec...

Behind the Scenes: Next Gen Mobile Technology Author: Eric Everson, Founder MyMobiSafe.com With infrastructure speeds continually improving at the network level of the world’s leading... More

Post a comment

Nasa hacker petition presented to Numb...

Sting's wife Trudie Styler and Janis Sharp have presented a petition to Number 10 calling for Nasa hacker Gary McKinnon not to be extradited to the US. Styler, and Sharp, who is... More

Post a comment

UK to appoint cyber-sec tsar?

The UK is to appoint a cyber security tsar along the lines of the US, according to a story in the Telegraph this morning. The story is similar to one that appeared in the Guardian... More

Post a comment


Skip Sub Navigation Links to CNET Brand Links

Help

Become part of the ZDNet community.

ALL TOOLKITS

Blogs

Newsletters