Security scare hits Symantec corporate tools

Hacker could gain privileged access to files

Tom Sanders in California

vnunet.com, 29 Aug 2005

Symantec has issued a patch for a security hole in its Corporate Edition 9.0 and Client Security 2.0 products.

The flaw was first reported by iDefense Labs and could allow a user to gain privileged access to files and functionalities on a local system through the software's help function.

Advertisement

The help software uses the same HTML format as for web pages. But the functionality is granted privileged access even if the user has only restricted rights.

By manipulating the user interface, a user could use those rights to browse all system files or execute applications.

Because the flaw cannot be exploited remotely, Symantec ranked its risk as 'medium'.

Licensed users of the affected products are advised to download the latest patch through the support website or update service.

  • Have your say
  • Send to a friend
  • Print
  • Digg
  • Reddit
  • Share

Tags:

Do you agree?

Have your say on this article

Further reading

Worldwide worm attacks intensifying

Microsoft urges users to patch systems immediately

Security experts warn of sinister new hacking scam

Hackers move into information kidnap

Pay up or you'll never see your data again

Windows worm knocks down corporations

Some firms forced to undust their old typewriters

Bugwatch: Tackling the enemy within

Staff training is as vital to network security as the most cutting-edge patch or state-of-the-art email filter

Related whitepapers

Related jobs

Most watched

eu flag

V3.co.uk weekly debrief, 6 Nov 09

This week, Europe decides what to do with illegal file sharers

Intel unveils its micro server platform

Small-enclosure systems take aim at hosting market

More video

Analysis and Reports

Remote access - Three steps to getting connected

3.4 million UK professionals now work from home – is your company equipped?

Cost benefits of a global collaboration network

This white paper is a must read for organisations looking for evidence of the bottom-line benefits of high-definition video and voice communications

Poll

Impact of Information Overload poll

Impact of Information Overload poll

What is the biggest problem your firm faces as a result of the data explosion?

View poll results

Advertisement

White paper library

Keep up to date with the latest products, services and technologies from the world's leading IT companies; IThound.com brings you over 6,000 white papers, case studies and analyst reports.

Advertisement

Newsletter signup

Sign up for our range of FREE newsletters:

  • More available - 'submit' to view

Existing User

Newsletter user login:

Enter email address to edit your newsletter preferences

Job of the week

More IT jobs

Search thousands of IT jobs :

Search thousands of IT jobs:

Advanced search

Hiring now on ComputingCareers:

Related IT jobs

More IT jobs

Search thousands of IT jobs :

Search thousands of IT jobs:

Advanced search

Advertisement

Spotlight

V3.co.uk Information Overload Summit starts today

We've finally cut the ribbon on V3.co.uk's inaugural Summit event...

Dirk Singer

Comment: Three steps to a social media strategy

Monitor, register and engage, says communications adviser Dirk Singer

rich media

Summit: Is the ECM industry up to the information overload challenge?

In part one of our report, we talk to EMC...

hacker

Summit: UK 'in danger of being left behind' on security

Experts warn behavioural monitoring is essential to protect sensitive data

Primary Navigation