1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Bug in Symantec’s anti-virus engine can lead to system compromise

Discussion in 'Help Net Security' started by RSS, May 17, 2016.

  1. RSS

    RSS New Member Member

    Google Project Zero researcher Tavis Ormandy has unearthed a critical remote code execution vulnerability in the anti-virus engine powering Symantec’s endpoint security products (including Norton-branded ones). The flaw (CVE-2016-2208) has been responsibly disclosed to the company, and it released a new version of its Anti-Virus Engine (v20151.1.1.4) with the fix incorporated. It will delivered to customers via LiveUpdate along with the usual definition and signature updates, Symantec reassured. In the security advisory accompanying the security … More →

    Continue reading...

Share This Page