Wednesday June 29, 2016

Several Major Flaws Found In Symantec Antivirus Software

How bad are the flaws found in Symantec antivirus? The Google security researcher that discovered the fatal flaws say they are "as bad as it gets." If you use Symantec antivirus software, make sure you read this Project Zero blog post.

Today we’re publishing details of multiple critical vulnerabilities that we discovered, including many wormable remote code execution flaws. These vulnerabilities are as bad as it gets. They don’t require any user interaction, they affect the default configuration, and the software runs at the highest privilege levels possible. In certain cases on Windows, vulnerable code is even loaded into the kernel, resulting in remote kernel memory corruption.