Common Tasks

Recent Posts

Community

Email Notifications

Personal Links

Archives

Security Protection - Harry Waldron (CS)

Security Best Practices, Breaking News, & Updates

Corporate Symantec Anti-Virus Client vulnerability

Symantec is working on a solution for an elevation of privileges that could occur with corporate clients.  The retail versions (e.g., NAV 2006) are not impacted by this issue.  Users should be cautious in email and website visitations until this issue is resolved.

Corporate Symantec Anti-Virus Client vulnerability
http://www.symantec.com/avcenter/security/Content/2006.05.25.html

Internet Storm Center Information
http://www.incidents.org/diary.php?storyid=1364

PRODUCTS IMPACTED
Symantec Client Security 3.1 a  
Symantec Antivirus Corporate Edition 10.1

As best practice, Symantec strongly recommends the following:

* Restrict access to administration or management systems to privileged users only, with additional restricted access to the physical host system(s) if possible.

* Keep all operating systems and applications updated with the latest vendor patches.

* Follow a multi-layered approach to security. Run both firewall and antivirus applications, at a minimum to provide multiple points of detection and protection to both inbound and outbound threats.

* Be cautious visiting unknown or untrusted websites or following unknown URL links.

* Do not open attachments or executables from unknown sources or that you didn't request or were unaware of. Always err on the side of caution. Even if the sender is known, the source address may be spoofed.

Posted: May 27 2006, 04:12 PM by Harry Waldron | with 1 comment(s)

Comments

PC Security said:

Looking for even more good content on internet security and identity theft prevention tips then have a look here

# July 19, 2008 1:09 PM