Symantec patches Norton security flaw


Symantec patches Norton security flaw

Antony Savvas

Symantec has updated its widely used Norton SystemWorks to fix a security flaw that remote hackers could use to hide malicious software.

The PC-tuning application has a feature called the Norton Protected Recycle Bin, which can create a hidden directory on Windows systems.

In an advisory note Symantec said that while the feature was designed to help users restore modified or deleted files, the hidden folder might not be scanned during scheduled or manual virus scans.

Because of this anomaly, the directory could be used as a place for attackers to store malicious code to enable attacks on the machine or others connected to it, according to Symantec.

The security company said it was not aware of any attempts so far by hackers to use the discovered weakness, and that the patch was a pro-active one.

Sony’s copy-protected music CDs posed a similar problem recently, when it was discovered they created a secret rootkit on a user’s machine, which could allow remote attacker to store rogue code without users knowing about the weakness.

Symantec’s recovery file has been hidden since its introduction to prevent inexperienced computer users from deleting it. Because of developing hacking techniques, the company said the folder would no longer be hidden.

The Norton update will display the previously hidden NProtect directory in the Windows interface, allowing it to be scanned by anti-virus products.

Email Alerts

Register now to receive IT-related news, guides and more, delivered to your inbox.
By submitting your personal information, you agree to receive emails regarding relevant products and special offers from TechTarget and its partners. You also agree that your personal information may be transferred and processed in the United States, and that you have read and agree to the Terms of Use and the Privacy Policy.

COMMENTS powered by Disqus  //  Commenting policy