A gaping security flaw in the latest versions of Symantec's anti-virus software suite could put millions of users at risk of a debilitating worm attack, Internet security experts warned May 25.
Researchers at eEye Digital Security, the company that discovered the flaw, said it could be exploited by remote hackers to take complete control of the target machine "without any user action."
"This is definitely wormable. Once exploited, you get a command shell that gives you complete access to the machine. You can remove, edit or destroy files at will," said eEye Digital Security spokesperson Mike Puterbaugh.
"We have confirmed that an attacker can execute code without the user clicking or opening anything," Puterbaugh said.
I've said it before, I'll say it again. Not even three words, three letters:
And for individual personal use, it's even free.
no subject
But I'm going to be buying it for my boxes...
no subject
no subject
I prefer a once a week scan or something, scheduled for the first start after the deadline.
no subject
no subject
no subject
no subject
I know, we hate symantec too, but for having a low-footprint network-deployable virus/malware/worm scanner that's got easy central admin and reporting, Symantec Enterprise AV is actually pretty damn good from an ease-of-use/effectiveness weighup..
course, then things like this pop and throw that whole weighup into irrelevance ...
no subject
Yeah, that's a valid point.
Does it still break trying to upgrade a machine from the standalone product (aka Norton AV) to the Symantec enterprise product? Ran into that when I was working at Ceva ... if you want it to work, you have to completely remove Norton first, THEN push Symantec. If you try to add the client to management by pushing the Symantec enterprise client as an upgrade, which you're supposed to be able to do, it won't work.
no subject
no subject
-Ogre
I'm trying AVG right now
Re: I'm trying AVG right now
Re: I'm trying AVG right now
Re: I'm trying AVG right now
I meant to report how long the scan took, but it doesn't actually include that in the test results and I was eating supper when it finished, so I didn't see. Ah well. :p But remember that there's two approaches to virus scanning. The safe approach is to scan EVERYTHING. AVG does this. If you want to appear to be faster, you can skip scanning files of types that you think are unlikely to contain viruses (i.e, you don't know of any viruses that propagate in that type of file). I know of several antivirus packages that do this. They're faster, yes, but they're less thorough.
no subject