A flaw has been found in Symantec's latest antivirus software that allows hackers to exploit a PC without the user having to open anything
Flaw allows hackers to take control of a PC without the user opening any attachments or clicking on anything

Flaw found in Symantec antivirus software

System-level access for hackers with no user interaction

Matt Chapman

A flaw has been found in Symantec's latest antivirus software that allows hackers to exploit a PC without the user having to open anything. 

The problem was first discovered by eEye Digital Security, which reported it as a 'high level' threat. 

Advertisement

"This flaw does not require any end-user interaction for exploitation and can compromise affected systems, allowing for the execution of malicious code with system-level access," said eEye in a statement.

Donal Casey, a security consultant at Morse, warned that this kind of security flaw is a serious cause for concern. 

"The fact that it allows hackers to remotely take control of a PC without the user opening any attachments or clicking on anything makes this a huge vulnerability," he said.

According to eEye, the problem affects Symantec Antivirus 10.x and Symantec Client Security 3.x.

A statement on the Symantec website described the flaw as "unverified" and the impact as "undetermined".

"Norton products do not contain the code affected by this potential vulnerability, and none of the Norton products are affected by this issue," Symantec said.

But Casey maintained that, even though the early indications are that no one has yet exploited the flaw, it is "a time bomb waiting to go off".

"Businesses must be alert and remember that their antivirus software is like any other application and must be kept up to date with the latest patches at all times," he said.

Symantec insisted that its product teams are investigating the report, and that updates would be provided for all currently supported products if necessary.

  • Have your say
  • Send to a friend
  • Print
  • Digg
  • Reddit
  • Share

Tags:

Do you agree?

Related whitepapers

Related jobs

Most watched

V3.co.uk weekly debrief, 13 Nov 09

This week we discuss the inaugural V3.co.uk Summit

Summit: Salesforce.com on SaaS and information overload

How web services contribute to data headaches

Analysis and Reports

Remote access - Three steps to getting connected

3.4 million UK professionals now work from home – is your company equipped?

Cost benefits of a global collaboration network

This white paper is a must read for organisations looking for evidence of the bottom-line benefits of high-definition video and voice communications

Poll

Impact of Information Overload poll

Impact of Information Overload poll

What is the biggest problem your firm faces as a result of the data explosion?

View poll results

Advertisement

White paper library

Keep up to date with the latest products, services and technologies from the world's leading IT companies; IThound.com brings you over 6,000 white papers, case studies and analyst reports.

Advertisement

Newsletter signup

Sign up for our range of FREE newsletters:

Existing User

Newsletter user login:

Enter email address to edit your newsletter preferences

Job of the week

Search thousands of IT jobs :

Search thousands of IT jobs:

Advanced search

Hiring now on ComputingCareers:

Related IT jobs

Search thousands of IT jobs :

Search thousands of IT jobs:

Advanced search

Advertisement

Spotlight

V3.co.uk weekly debrief, 13 Nov 09

This week we discuss the inaugural V3.co.uk Summit

Fingers on keyboard

New Flash vulnerability discovered

Web sites could be vulnerable to Flash attacks

Chris Adams

Summit: Microsoft Office to the rescue

Chris Adams, Office Client product manager for Microsoft UK, explains...

Illegal downloader

Industry and human rights campaigners united in opposition to "three strikes" plan

Critics says government proposals to curb illegal downloading are unworkable...

Primary Navigation