Warning about new vulnerabilities in Symantec Antivirus

Security firm eEye Digital Security has just discovered a serious flaw in Symantec antivirus software.

EEye's research experts claim that the new flaw could be exploited by hackers to create a self-replicating computer worm to attack Symantec-based systems.

Symantec has not yet confirmed the existence of this security vulnerability, so the work of fixing has not had any significant progress. Meanwhile, eEye only revealed very little information about this security error.

The information on eEye's website says this is a vulnerability that could be exploited to remotely execute malicious code without user interaction. eEye betrays this security vulnerability to 'high risk'

It is known that this security vulnerability affects a variety of Symantec Antivirus versions 10 and above and Symantec Client Security 3.x. Other Symantec Antivirus versions may also be affected by this security error.

Mike Puterbaugh, eEye's vice president, said it was a vulnerability that could be exploited by harmful worms.

Security firm Symantec said it is re-evaluating eEye's reports. If you see that this is a really dangerous vulnerability, Symantec will soon have remedial solutions, the company spokesman said.

EEye expert Marc Maiffret confirmed that Symantec must take at least one to two months to fix this error because this security error stems from the software programming code itself.

This is not the first security hole discovered in Symantec products. Late last year, researcher Alex Wheeler also discovered another security flaw in Symantec's antivirus software that could be exploited by hackers to gain control of the system.

Last October, a serious security hole was discovered in Symantec's Scan Engine software.

Hoang Dung