Symantec moves to plug its anti-virus vulnerability
Symantec has moved to plug the security gap in its anti-virus software, which was originally flagged just last Friday.
Few details of the flaw were revealed, but the vulnerability could be exploited remotely. The exact products affected are: Symantec Client Security 3.1 and Symantec AntiVirus Corporate Edition 10.1.
Note that the Norton-badged range of consumer anti-virus software is not affected.
In a statement issued today, the company states that ‘Fixes have been identified for all affected products and work on these fixes is ongoing’. It also states that it has released IPS (intrusion prevention system) signatures via LiveUpdate for Symantec Client Security that provide protection from any exploit that may come out from this vulnerability.
The URL to monitor is the Symantec Security Response website.
The company repeats that it has not had any reports of the vulnerability being exploited.