CVE-2010-0106

Security News - Security Reviews - Exploits - Tools - UNIX Focus - Windows Focus

SecuriTeam™
Beyond Security®

SecuriTeam™ Home
Ask the Team
Mailing Lists
Advertising Info
Blogs

	SecuriTeam™ in Your Inbox

	E-mail this CVE-2010-0106 to a friend

New vulnerability?
New tool?
Tell us

Credit:
The original article can be found at: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-0106
The original article can be found at: http://www.securityfocus.com/bid/38219

Website Security Scan	Code Vulnerability Test	Network Assessment Tool
Detect hidden vulnerabilities	Exhaustive automated testing	Real-time, continuous security
Get guidance from professionals	of internal or 3rd party code.	scanning for your entire network

Check for CVE-2010-0106

Vulnerability Assessment and Management.
Automated Pen Testing for 50 to 50,000 nodes
beyondsecurity.com/vulnerability-scanner

Vulnerable Systems:
* Symantec AntiVirus 10.0.x
* Symantec AntiVirus 10.1.x before MR9,
* AntiVirus 10.2.x,
* Client Security 3.0.x
* 3.1.x before MR9

Symantec AntiVirus is prone to a vulnerability that may allow an attacker to bypass on-demand scans.
Successful exploits will allow attackers to bypass on-demand virus scanning, possibly allowing malicious files to escape detection.
Update (March 1, 2010): Attackers require local access to exploit this issue. Symantec AntiVirus 11.x is not affected by this issue.
Update (March 2, 2010): Symantec Endpoint Protection is not affected by this issue.

Vendor Status:
Symantec as issued an update for this vulnerablity

Patch Availability:
http://www.symantec.com/business/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2010&suid=20100217_00

CVE Information:
CVE-2010-0106

Security News - Security Reviews - Exploits - Tools - UNIX Focus - Windows Focus