Internet security researcher eEye Digital Security has
discovered a serious flaw in Symantec’s enterprise anti-virus
software.
EEye said hackers could use the flaw to create a
self-replicating worm attack against Symantec users’ systems,
although Symantec has not so far confirmed the latest vulnerability
said to affect its enterprise security systems.
Symantec is still studying the reported threat and is
considering whether to issue a security patch for it.
Version 10 and above of Symantec's enterprise anti-virus
software is said to be affected. The supplier’s consumer AV
products are, however, not said to be affected by the threat.
Last December, a flaw was discovered in Symantec's Antivirus
Library that potentially allowed remote attackers to gain control
of users’ systems.
And in October, a critical flaw was found in the company's
anti-virus scan engine software.
