Feeds

Norton's firewall not fiery enough

Pegasus takes fright

Protecting against web application threats using SSL

Users of Norton Personal Firewall have been urged to update their software following the discovery of a serious vulnerability in the security package.

A stack-based buffer overflow vulnerability involving ActiveX controls creates a means for hackers to inject hostile code onto vulnerable systems, Symantec warns. The security bug affects Norton Internet Security 2004, Norton Internet Security 2004 Professional and Norton Personal Firewall 2004. Later versions of the security packages are not affected by the flaw, which means the majority of Symantec personal firewall users are already in the clear.

For users of the vulnerable 2004 vintage of Norton products, Symantec has published security updates designed to guard against exploits via its LiveUpdate service.

It's sometimes said that trouble comes in threes. As well as the Norton firewall vulnerability reports suggest the Norton anti-virus is subject to a couple of troublesome false positives.

According to the SANS Institute's Internet Storm Centre, Symantec has been wrongly identifying two system files (netapp32.dll and lsasrv.dll) in the simplified Chinese version of Windows XP SP2 as the Haxdoor Trojan. In standard configurations on Norton AV these files are deleted, resulting in problems subsequently booting systems. Fixing systems involves copying these files from backup CDs.

Separately a 15 May update in Symantec Anti-Virus falsely categorised Pegasus, the popular email package, as a Trojan. Updated virus definition files released over the weekend resolved the issue but not before ruffling feathers down at the Pegasus users' community. A thread providing advice on how to reinstall the package and attempt to restore email databases (if these were also affected) can be found here. ®

Reducing the cost and complexity of web vulnerability management

More from The Register

next story
Infosec geniuses hack a Canon PRINTER and install DOOM
Internet of Stuff securo-cockups strike yet again
'Speargun' program is fantasy, says cable operator
We just might notice if you cut our cables
Apple Pay is a tidy payday for Apple with 0.15% cut, sources say
Cupertino slurps 15 cents from every $100 purchase
Israeli spies rebel over mass-snooping on innocent Palestinians
'Disciplinary treatment will be sharp and clear' vow spy-chiefs
YouTube, Amazon and Yahoo! caught in malvertising mess
Cisco says 'Kyle and Stan' attack is spreading through compromised ad networks
Hackers pop Brazil newspaper to root home routers
Step One: try default passwords. Step Two: Repeat Step One until success
Greater dev access to iOS 8 will put us AT RISK from HACKERS
Knocking holes in Apple's walled garden could backfire, says securo-chap
Microsoft to patch ASP.NET mess even if you don't
We know what's good for you, because we made the mess says Redmond
prev story

Whitepapers

Providing a secure and efficient Helpdesk
A single remote control platform for user support is be key to providing an efficient helpdesk. Retain full control over the way in which screen and keystroke data is transmitted.
WIN a very cool portable ZX Spectrum
Win a one-off portable Spectrum built by legendary hardware hacker Ben Heck
Storage capacity and performance optimization at Mizuno USA
Mizuno USA turn to Tegile storage technology to solve both their SAN and backup issues.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?
Security and trust: The backbone of doing business over the internet
Explores the current state of website security and the contributions Symantec is making to help organizations protect critical data and build trust with customers.