Disclaimer: This news item was originally posted on Wednesday, May 31, 2006. Its content may no longer be timely or accurate.

Symantec client upgrades available

Posted: 18:00:00, Wednesday, May 31, 2006   Expiration: 18:00:00, Wednesday, Jun 7, 2006  

Symantec has announced a vulnerability in their AntiVirus Corporate Edition and Client Security products.

A stack overflow could potentially allow an attacker to execute arbitrary code with system level rights on an affected system. This vulnerability affects versions 10.0 and 10.1 of Symantec AntiVirus Corporate Edition and versions 3.0 and 3.1 of Symantec Client Security.

If you are running one of the affected versions, please download and install the latest client software. Updates are available at https://software.wisc.edu/security (As always, check with your department IT administrator before installing software on a department-owned machine.)

Symantec's information on this issue is available here:

Finally, the new Security Starter Software CD that will be distributed at SOAR later next week, and to campus after that, includes the latest client software, so users will not have to take these steps if using the CD.

-- DoIT Security

Created: 10:18:11, Thursday, Jun 1, 2006 (by Allen M.)
Updated: 08:11:28, Tuesday, Mar 24, 2009 (by Allen M.)