Symantec corporate AV software compromises servers

News

Symantec corporate AV software compromises servers

Antony Savvas

Symantec’s AntiVirus 9 Corporate Edition security software can be used by unauthorised users to take control of company servers.

A flaw reported on the Bugtraq security mailing list, and acknowledged by Symantec, allows local attackers to view server log-in usernames and passwords in clear text.

The information is posted to a log file generated by AntiVirus 9 as it connects to and downloads updates from Symantec's LiveUpdate system.

The log also includes the server name, the IP address, the subnet and subnet mask, as well as the connection protocol.

Symantec said it is aware of the problem and is investigating the matter.


Email Alerts

Register now to receive ComputerWeekly.com IT-related news, guides and more, delivered to your inbox.
By submitting your personal information, you agree to receive emails regarding relevant products and special offers from TechTarget and its partners. You also agree that your personal information may be transferred and processed in the United States, and that you have read and agree to the Terms of Use and the Privacy Policy.
 

COMMENTS powered by Disqus  //  Commenting policy