Critical Flaws Exposed on Symantec Products to Remote Attacks

By | June 30, 2016

Symantec Critical Bug

Multiple critical security vulnerabilities have been discovered in a range of Symantec products by Google Project Zero researcher Tavis Ormandy, which includes major consumer of enterprise releases such as Norton Security, Endpoint Protection and legacy offerings such as Norton anti-virus.

This bug is affecting Windows, Mac and Linux platforms.

According to security researchers

The flaws don’t require any user interaction, they affect the default configuration, and the software runs at the highest privilege levels possible.

“In certain cases on Windows, vulnerable code is even loaded into the kernel, resulting in remote kernel memory corruption. Because no interaction is necessary to exploit it, this is a worm able vulnerability with potentially devastating consequences to Norton and Symantec customers.”

In addition to finding vulnerabilities in Symantec’s own code, Ormandy also noticed that the company has neglected to update third-party components used in the decomposer. The expert said the security firm had not updated the libmspack and unrarsrc libraries for at least 7 years. Dozens of flaws have been identified in these components over the past years and many of them have public exploits.

Symantec published an advisory on Tuesday to inform customers that all the vulnerabilities found by Ormandy have been resolved.

Subscribe for latest security flaw