Symantec Patches 'High-Risk' Bug

Wednesday, 11 April 2007

Symantec has released a patch update for a flaw in its Enterprise Security Manager tool. If this vulnerability is exploited a fraudster can remotely control an infected computer by sending out malicious code. Symantec has flagged this as a 'high-risk' bug and are requesting users to update the patch accordingly. "The vulnerability exists in the ESM agent remote upgrade interface," Symantec explained in an online advisory. "The ESM agent accepts remote upgrade requests from any entity that understands the upgrade protocol. The ESM agent does not currently verify that upgrades are from a trusted source. An attacker with knowledge of the agent protocol could deploy a piece of software that allows the attacker to control the host computer." Symantec recommends the following actions for IT administrators * Evaluate the possible impact of these vulnerabilities to critical systems * Plan for required responses including patch deployment and implementation of security best practices using the appropriate security and availability solutions. * Take proactive steps to protect the integrity of networks and information. * Verify that appropriate data backup processes and safeguards are in place and effective. * Remind users to exercise caution in opening all unknown or unexpected e-mail attachments and in following Web links from unknown or unverified sources. Symantec recommends the following actions for consumers: * Regularly run Windows Update and install the latest security patches to keep software up to date. * Avoid opening unknown or unexpected e-mail attachments or following Web links from unknown or unverified sources. * Use an Internet security solution such as Norton Internet Security 2007 to protect against today's known threats and tomorrow's Internet security risks. Source: Computer Stuff

 

< Prev		Next >