|
 |
|
 |
| Tuesday, February 07, 2012
|
| Register Login |
 |
|
|
|
|
Users currently online
|
 |
|
|
|
 |
Membership: |
 |
Latest:
kevin |
 |
New Today:
0 |
 |
New Yesterday:
0 |
 |
Overall:
56 |
 |
People Online: |
 |
Visitors:
4 |
 |
Members:
0 |
 |
Total:
4 |
Online Now:
|
|
|
|
|
|
|
|
|
|
Welcome to the Viruswarning forums. All your original content has been ported to the new forums as well as new content and additional opportunities to interact with the authors of Viruswarn.com. You can always access old content at www.leedrake.com/forum . You may find some formatting was lost in the conversion and the older versions of the posts to be more readable....
But at least it's all here.
Enjoy!
|
|
|
|
|
|
Viruswarn Forums
|
|
|
|
|
| You are not authorized to post a reply.
|
|
| Author |
Messages |
|
Lee Drake
Posts:238
 |
| 05/13/2004 8:49 PM |
|
| What is it
Users of Symantec's firewall or "internet security" products have, for the third time, been exposed to a vulnerability in the firewall itself. This vulnerability could, if unpatched, leave a firewall open to being exploited remotely, allowing a user to run code of their choice on the system. Products affected include:
Symantec Norton Internet Security 2002
Symantec Norton Internet Security 2003
Symantec Norton Internet Security 2004
Symantec Norton Internet Security Professional 2002
Symantec Norton Internet Security Professional 2003
Symantec Norton Internet Security Professional 2004
Symantec Norton Personal Firewall 2002
Symantec Norton Personal Firewall 2003
Symantec Norton Personal Firewall 2004
Symantec Client Firewall 5.01, 5.1.1
Symantec Client Security 1.0, 1.1, 2.0(SCF 7.1)
Symantec Norton AntiSpam 2004
This vulnerability actually leaves systems more vulnerable than if they didn't have the firewall at all.
Also, Microsoft released another patch (the May patch) MS04-015 for another vulnerability in their windows help and support center.
What should you do
Do a manual run of your liveupdate procedure to be sure that your software is up to date and has been patched. Active liveupdate should patch this problem automatically, but manually running liveupdate will ensure that your patch is downloaded and applied. You can read more about the patch at the link below. If you do not have Norton firewall, internet security, client security or Antispam 2004 - you do not need to worry about this. The flaw does NOT affect Norton Antivirus. Due to the fact that 3 serious vulnerabilities in Norton's Internet Security products have been found in the space of 4 months we would recommend that you at least consider uninstalling the product and installing a more rigorous and well tested personal firewall (such as ZoneAlarm) if a personal firewall is in your security profile.
To run liveupdate, open each Symantec product you have and click the LIVEUPDATE button in the toolbar. Monitor the log window to be sure that the download and installation completes successfully or that "no updates were found".
For the Microsoft patch, run windowsupdate (http://windowsupdate.microsoft.com). Note that if you have disabled this service for some reason - you will need to turn it ON to have the patch applied properly. If you don't remember turning it off - it's on by default so don't worry about it. To turn it on go to the SERVICES panel and be sure it is not set to disabled (Manual or Startup are ok). It does not need to be actually running - it just cannot be disabled. Running Windows Update should fix any problems associated with MS04-015, once the service is enabled.
Additional Information
Norton link: http://securityresponse.symantec.com/avcenter/security/Content/2004.05.12.html
Zonealarm: http://www.zonelabs.com/store/content/home.jsp
Windows update: http://windowsupdate.microsoft.com
MS04-015: http://www.microsoft.com/technet/security/bulletin/MS04-015.mspx
What do do if your Help and Support Center is disabled: http://support.microsoft.com/default.aspx?scid=kb;en-us;841996
Cheers and happy spring!
Lee Drake
Aztek Computer Solutions, Inc.
274 N. Goodman St Suite B269
Rochester, NY 14607
the human side of computing
Email: ldrake@azcomputer.net
Web: www.azcomputer.net Office Phone: 585-242-2060
Fax number: 585-242-9441
|
|
|
|
|
|
| You are not authorized to post a reply. |
|
|
|
ActiveForums 3.6
|
|
|
|
|
|
|
|
|
|
|
|