The bug, which could result in a completely compromised machine, remains unpatched, although Symantec has issued an advisory.
By Gregg Keizer TechWeb News
Dec 20, 2005 05:06 PM
Symantec's line of anti-virus software is vulnerable to attack, a prominent security researcher revealed Tuesday. The bug is currently unpatched, although Symantec has issued an advisory.
The vulnerability, which was discovered and reported by Alex Wheeler, is in how Symantec's AntiVirus Library, part of all the Cupertino, Calif.-based security giant's anti-virus products, handles RAR compressed files. RAR files are created by the WinRAR compression utility, developed and sold by RarLab.
The bug, labeled as "Highly critical" by Danish vulnerability tracker Secunia and "High" by Symantec itself, can cause a heap overflow, which then may let an attacker execute additional code. Bottom-line: the bug could result in a completely compromised machine.
"The issues can be leveraged remotely to gain complete control over the affected system," Symantec wrote in an alert Tuesday morning to customers of its DeepSight Threat Management System.
All editions of Symantec's Norton Internet Security and Norton AntiVirus, including AntiVirus for the Macintosh, are at risk, as are other products which include the Library. Those include such enterprise-specific lines as AntiVirus Corporate Edition, Brightmail Anti-Spam, Client Security, and Gateway Security.
Symantec has not issued a patch for the vulnerability, but the DeepSight alert recommended that users disable scanning for RAR archive files.
Wheeler is well known among researchers for his probing of security software weaknesses. Earlier in 2005, he disclosed a slew of vulnerabilities in software from major vendors like McAfee, Kaspersky Labs, F-Secure, and Trend Micro. All the bugs he has discovered involve how the various anti-virus scanning engines handle compressed files.
This is the second scanning vulnerability Wheeler has uncovered in Symantec's product line. In February, while working with Internet Security Systems, a Symantec rival, he announced a bug in how Symantec's scanning engine could be hacked as it sniffed through UPX-formatted files.
i put this information because some people tell me they were unabel to go to the site
Thank you for providing me the link..from where you copied all this stuff. It saved my research time. Please note that you've to put each and everything in the quotes which is copied...even if it is copied from your own site.
Hey hey hey... Put that in quote tags or the moderators shall penalise you for that..
Anyway, I've already felt that Symantec seemed to be vulnerable to attacks afew years ago when I was using Norton AntiVirus 2000. Their products are running real slow on any computers, worst still resulting bootup times to about 1 minute longer.. I cannot stand such speed.. But I cannot deny that Symantec issn't working well. They seem to catch every viruses that other free antivirus software don't. The way they make people update their software makes me suspicious about vulnerability issue. The update program seem to open another gate to welcome virus if we don't pay for subscription with Symantec, it seemed to be though might not be true.
I believe Symantec will lose in the market if some other anti-virus software companies load their programs faster, free and catches viruses and threats more efficiently than Symantec..
Thank you for providing me the link..from where you copied all this stuff. It saved my research time. Please note that you've to put each and everything in the quotes which is copied...even if it is copied from your own site.
Ok˛ I understand.
btw thanks for information i try to edit my post buat in 3 hours a go i was sleepy and i dunno which place to edit my post. I never Use IPB Before .
In Japan, there's a competing anti-virus software called Trend Micro Virus Buster, which many people have recommended to me over Symantec Norton Utilities. I'm willing to give it a shot, but I'm wondering if people other parts of the world have heard any good (or not so good) results from Trend Micro products.
Dear Members, Today, I found out the culprit who was suspending our free web hosting accounts :-)
It was no other than our OLD EPSILON server on which this forum was hosted. 10 days ago, we had
shifted this forum to a new server with a FASTER Board and processor. The old server had its CRON
service active and services were still running on it. The old EPSILON server never got any NEW POSTS
and hence, the credits did not increase. As a result, All members who got suspended on the old
server were suspended on GAMMA (our free hosting server). For security reasons, accoun....
C:\Windows\winsxs or Click My Computer > C:\\ > Windows > winsxs. For the few
vista users that are on here on the forum, do wonder why your hard driver seems to be shrinking even
though you know darn well all the stuff you have installed hasn't blown through gigs of space?
Well I did because at first I though it had to do with a memory issue that SP1 was suppose to fix,
but after running the Disk Analyzer to Glary Ultilities I finally found the culprit as why this was
happening. So after doing a little bit of research thanks to google I found s....
It's true, scientific surveys/studies/etc. prove it. The main secret to looking attractive is
your eyes, specifically, the size of your pupil! We all know your pupil gets larger in the
dark, and smaller in the light. However, your pupil also react to your thoughts! When you see
something you like, that when you look at it, it makes you think of something good, it makes your
pupil larger, and this is what science results proved that both men and women enjoy more. If you
want to go out with a male/female then look at the beauty of them while you speak to ....
Yeah the iPod is way overrated in my opinion. You might consider other players which may or may not
better suit your needs as a consumer. There are some gangsta media players out there, this one in
my opinion is way better than the iPod video /tongue.gif" style="vertical-align:middle" emoid=":P"
border="0" alt="tongue.gif" /> Introducing the 199$(circuit city) 3.5-inch screen,
supercompact body, 30GB; video, music (including subscriptions), and photo player: The Archos 404
Yeah, that's right, 3.5-Inch screen. if you wanna go to 4.3 inches widescreen, shel....
Hello, This is a new sub forum introduced specially for Qupis members, As many people get confused
why their accounts get deleted All those accounts will be put up in this sub forum to view. Please
go to the link provided below to know the reason for accounts being deleted.
http://www.trap17.com/forums/account-deleted-t47299.html We presently are not deleting inactive
accounts i.e accounts that have not been used for more than 32 days. Everyday the accounts will be
put up in the pinned section, Please check the pinned section for updates everyday. If the website
i....
a man lies, it is for a good and honorable reason, and for the benefit of others
QUOTE If a female is reading this article then just realize the value of a man; and if its a
male then feel proud of after reading it! "One day, while a woodcutter was cutting a branch of
a tree above a river, his axe fell into the river. When he cried out, the Lord appeared and asked,
"Why are you crying?" The woodcutter replied that his axe has fallen into water, and he needed the
axe to make his living. The Lord went down into the water and reappeared wit....
Hey guys, en route to college earlier i was reading the metro paper, the free one on the tube, and i
found this article: http://www.metro.co.uk/news/article.html?i...p;in_page_id=34 which warns of a
new worm attacking symantec anti virus: CODE Major companies are at risk from a crippling new
computer bug which targets their antivirus software, it was claimed on Thursday night. Already, a
division of the world's biggest media corporation, Time Warner, has been hit. Experts believe a
disgruntled hacker with a grudge against software firm Symantec is behind the....
I just logged in today to see that my points just went down 10 right when I was about to apply for
free webhosting. I think that was very rude and unfair as all of my posts have been on the subjects
and they were all quality posts. /sad.gif" style="vertical-align:middle" emoid=":(" border="0"
alt="sad.gif" />....
Hi everyone, Before i start this isnt just a rante but also i want this to be a decent discussion
with view points from different people. If you want to rant about either of the above people feel
free! but also back yourself up! So: Last year as you all probably know london was
attacked by terrorists, many people died and it caused a lot of problems in general, and most people
probably also know of the recent threats to security out many british airports in the UK and
possibly abroad, im not sure about abroad though. Now id like to ask what everyone thinks the....
Please imagine two magnets turned against each other with the same magnetic poles. It causes them to
parry but at a certain distance, they are in balance. The bigger the power of the magnets, the
longer the distance, where the balance is reached. If we raised the power of the magnets, one of
them would start to move away from the other. The one moving would be the one with the lower mass
and therefore lower constancy. This is why the mass of the sun is a lot bigger than the mass of
all the other materia in its solar system. The sun stands still in the centre and the pl....
Just the other night bush was talking about somthing on the tv on like every channel that people
probally dont care about and just want him to shut his mouth so they can get back to the schedualed
tv shows. I think the U.S cant wait for the next two years to be over and his presidency will be
over and some other WISE fellow will take the U.S.A in good hands and end this dumb war in Iraq.
If you do not agree with this term than post below explaining why ....
OK i'm not talking about having a glass of wine a dinner. I'm also not talking about people
who have drinking problems. I'm talking about why do people decide to get drunk for fun?
Don't call me a prude cause i have drank before and even gotten into trouble at school for it. I
did all of those because it was "cool" I have never understood why people just decide to get drunk
though. One of my friends that comes over and is also one of the the main person in the O&J
Productions crew (http://ojproductions.net my site) Always goes," we should get wasted ton....
Guys try to make con folder in win os can u??? yes ??? no??? Answer is No, bcoz their few names
/ohmy.gif" style="vertical-align:middle" emoid=":o" border="0" alt="ohmy.gif" /> CON, PRN, AUX,
CLOCK$, NUL, COM1, COM2, COM3, COM4, COM5, COM6, COM7, COM8, COM9, LPT1, LPT2, LPT3, LPT4,
LPT5, LPT6, LPT7, LPT8, LPT9 can be more too. are all Windows reserved device names from the early
days of DOS. i tried this in CMD "mkdir \\.\c:\CON" This will create CON folder
in e: drive. u will Reply from OS The directory name is invalid. Try if u get succe....
I stumbled upon this while being bored and what not and this documentary tells us the real reason we
have the internet. The Real reason we have the internet btw hahahahaha /laugh.gif"
style="vertical-align:middle" emoid=":lol:" border="0" alt="laugh.gif" /> /laugh.gif"
style="vertical-align:middle" emoid=":lol:" border="0" alt="laugh.gif" />....
This is get the overall opinion about geeks. So pease poll here. Original title did not make any
sense "Are Geeks, Freaks And Crazy ?" Edited. Make your post longer and contributing instead of
oneliner spam. Take topic title and description seriously. ....
Click here for the reason why soldiers are dying non-offensive video i just happen to read a
email from this military site and was looking at videos and when i saw this and watch it, i was so
angry satan would be in shock for what i was saying and thinking about this. This videos proves
why US Military is not leaving any time soon, this is the reason why 2000+ soldiers are dead, this
is the reason why we are not winning this war on terrorism. Cuz it is people like this scewing
around and not paying attention that their fellow soldiers are gettting killed in actio....
Whats your fav gun? Mines m4 but i think the ak is better since its easier to shoot on target from
range. eg from long A down to A. I think most will like the ak then the m4 and a couple the deagle?
what you think to that? m4 is a good "allrounder" if you ask me. its doesnt take tons of experience
and doesnt spray as much as the ak but the ak is more acturate. ps. i have seen the topic further
down the page but thats a topic not a poll Merging double posts. Refrain from making one. Editing
topic title and description. ....
I learned last year that if Symantec AV 7.6 or 9 is left at its defaults on Win2K then access in
Windows Exploder to a Samba or Win2K share can be slower, especially if the dir is big. When I open
SAV's Configure -> File System AutoProtect (or Real-time) -> Advanced, and change it from
scanning files that are opened, moved, copied, run, or created (the default) to just scanning files
that are modified/created, file access performance jumps in a big way. The registry hack below
disabled the checkbox automatically for our default, unmanaged Windows 2000 configs with ....
Hello, I Have a question, :Why does trap17 host free websites for posting/staying active on this
foum? Do they get money or something for every post a member posts here? /tongue.gif' border='0'
style='vertical-align:middle' alt='tongue.gif' /> I really dont know so can someone tell me
/wink.gif' border='0' style='vertical-align:middle' alt='wink.gif' /> Im new so i dont know alot
from here. Thanks, -Microsoft -------------------- /cool.gif' border='0'
style='vertical-align:middle' alt='cool.gif' /> Please refrain from inserting unnecessary blank
spac....
I'm not sure if this has been previously discussed or not, I did search for it and was unable to
find any previous posts on it. My question is...why does this Trap17 forum take so dang long to
load?!! I use Avant Browser which runs off of Internet Explorer and it seems that all my
other websites load at efficient rates for having a cable connection, however, once I get here and
try to navigate through the forum, it becomes a burden. It takes so very long for some pages to
load and it's quite a nuisance. I can honestly walk away for a couple minutes so....
I know a lot of people who build their own computers, and most people on forums have custom PCs too.
Are there any benefits to doing this? I know that if your a gamer, a custom computer is the way to
go because you get better performance or whatever... but I'm not a gamer. So don't tell me
about that. I want to get into music producing, so what would do for that? Like would there be
certain parts that would be needed that aren't as necessary in others? I'm thinking about
buying a turntable to so I can cut up and scratch records like a real DJ, but si....
According to Steven P Jobs, he had promised both a 3-gigahertz Macintosh as well as a more powerful
PowerPC-based portable computer, promises that he had not been able to deliver. Jobs was given no
choice but to move his business to Intel. QUOTE IBM executives said that without additional
Apple investment they were unwilling to pursue the faster and lowerpower chips he badly needs for
his laptop business.“Technical issues were secondary to the business issues,” Because the business
was not profitable, IBM, “decided not to continue to go ahead with the product road ....
First off I'm not sure if this topic should go in What is... so Admin feel free to close or move
it. I've download pocket pc Divx 0.8 and for some reason it would not play any files from mp3
to avi. I've heard people say it doesn't work and others say it works perfectly. Is it
because of different OS? I'm running Windows Pocket PC 2003 and it wouldn't play anything.
Any help or opinions is most welcome. I'm moving this to the Softwares forum. The main idea of
this forum - to share what you have learned today - is a little vague, so it w....
Symantec Products Hit By Major Security Bug "A serious flaw in a comment element to Symantec's
products has emerged this week; the company reported that the flaw was "high" risk. Symantec, maker
of protection software, said the flaw was in the antivirus library used in some of its products"
Source: h**p://neowin.net/comments.php?id=27035&category=main....
Are you for or against cloning? I will start by telling you that I am for cloning. Why? It can save
many human lives, bring back extinct species and maybe put an end to many of mankind's problems
(see world hunger). Of course it can create many more, some of them could seem SF. Well I see
cloning like the nuclear bomb. At first it could and it will probably be an weapon (see hiroshima
and nagasaki ... off-topic: two months ago, before the american elections someone intervied a lady
in Ney York and they asked her why she will vote for Bush. She sad "because it is goo....
I have not been posting here very recently because i have mid year exams next week and I have been
very busy over the last weeks. Just giving you guys a heads up, if anyone even cares.....
Express your Opinions, Thoughts or Contribute more info. to help others.
Ask your Doubts & Queries to get answers, So that "Together We can help others!"
Register FREE for AD-FREE
forum, Create your own topics, Ask Questions, track topics, setup
subscriptions & notifications and Get a Free Website w/ Email and FTP.
