Symantec patches corporate anti-virus software

By

Symantec has issued a patch for a flaw in its corporate anti-virus software that could allow an attacker to access a server.

The flaw in Symantec Anti Virus Corporate Edition v.9.x reveals the server login name and password of the system administrator in charge of the LiveUpdate for the software.


When the LiveUpdate client checks for updates, the LiveUpdate server login name and password are written to a local log file in clear text, according to Symantec.

The company recommends that the user account for the administrator responsible for the LiveUpdate be unique for accessing LiveUpdate packages only, and have no other system access.

www.symantec.com

Got a news tip for our journalists? Share it with us anonymously here.
Copyright © SC Magazine, US edition
Tags:

Most Read Articles

CBA using facial recognition logins to verify disputed payments

CBA using facial recognition logins to verify disputed payments

Qantas contacted by "potential cyber criminal"

Qantas contacted by "potential cyber criminal"

SA Power Networks tackles IAM, cloud security under five-year strategy

SA Power Networks tackles IAM, cloud security under five-year strategy

Top US diplomat impersonated with AI by unknown actor

Top US diplomat impersonated with AI by unknown actor

Log In

  |  Forgot your password?