ML
    • Recent
    • Categories
    • Tags
    • Popular
    • Users
    • Groups
    • Register
    • Login

    Symantec Zero Day Flaw

    Scheduled Pinned Locked Moved IT Discussion
    12 Posts 9 Posters 2.5k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • ?
      A Former User
      last edited by

      Symantec’s Endpoint Protection product has three zero-day flaws that could allow a logged-in user to move to a higher access level on a computer, according to a penetration testing and training company.

      The three flaws, all known as privilege escalation vulnerabilities, were found during a security test of a financial services company, said Mati Aharoni, lead trainer and developer for Offensive Security, in a phone interview late Tuesday.

      Read More

      thanksajdotcomT 1 Reply Last reply Reply Quote 3
      • thanksajdotcomT
        thanksajdotcom @A Former User
        last edited by

        @thecreativeone91 said:

        Symantec’s Endpoint Protection product has three zero-day flaws that could allow a logged-in user to move to a higher access level on a computer, according to a penetration testing and training company.

        The three flaws, all known as privilege escalation vulnerabilities, were found during a security test of a financial services company, said Mati Aharoni, lead trainer and developer for Offensive Security, in a phone interview late Tuesday.

        Read More

        I saw Symantec and knew it would be bad news. Always is.

        IRJI 1 Reply Last reply Reply Quote 4
        • Reid CooperR
          Reid Cooper
          last edited by

          Ouch, that's really bad. For a security product to have that kind of vulnerability. Of course, security products are more likely to be attack targets because they have to have higher privileges than most products.

          1 Reply Last reply Reply Quote 0
          • PackMatt73P
            PackMatt73 Vendor
            last edited by

            I'm reaching out to some folks internally to see what info I can supply

            scottalanmillerS 1 Reply Last reply Reply Quote 3
            • garak0410G
              garak0410
              last edited by

              Symantec Endpoint was in place when I took over as solo IT guy 3 1/2 years and while I've always found Symantec bloated, it has worked well and have just kept it over the years. That said, I had a rash of weird issues with it last week...a lot of calls on people getting alerts for weird html files.

              ? 1 Reply Last reply Reply Quote 0
              • ?
                A Former User @garak0410
                last edited by A Former User

                This post is deleted!
                1 Reply Last reply Reply Quote 0
                • scottalanmillerS
                  scottalanmiller @PackMatt73
                  last edited by

                  @PackMatt73 said:

                  I'm reaching out to some folks internally to see what info I can supply

                  Thanks for popping in. Great to see active vendors.

                  1 Reply Last reply Reply Quote 3
                  • NicN
                    Nic
                    last edited by

                    Youtube Video

                    1 Reply Last reply Reply Quote 0
                    • IRJI
                      IRJ @thanksajdotcom
                      last edited by

                      @ajstringham said:

                      @thecreativeone91 said:

                      Symantec’s Endpoint Protection product has three zero-day flaws that could allow a logged-in user to move to a higher access level on a computer, according to a penetration testing and training company.

                      The three flaws, all known as privilege escalation vulnerabilities, were found during a security test of a financial services company, said Mati Aharoni, lead trainer and developer for Offensive Security, in a phone interview late Tuesday.

                      Read More

                      I saw Symantec and knew it would be bad news. Always is.

                      I have yet to find a useful Symantec product

                      1 Reply Last reply Reply Quote 1
                      • scottalanmillerS
                        scottalanmiller
                        last edited by

                        I've used Netbackup for years. It is awesome. Used it almost continuously since 2004 at three different companies.

                        I've even built Netbackup RPM packages.

                        1 Reply Last reply Reply Quote 0
                        • T
                          Texkonc
                          last edited by

                          Who let Matt in here?

                          buhahahaha 😉

                          thanksajdotcomT 1 Reply Last reply Reply Quote 1
                          • thanksajdotcomT
                            thanksajdotcom @Texkonc
                            last edited by

                            @Texkonc said:

                            Who let Matt in here?

                            buhahahaha 😉

                            Just saw @scottalanmiller 's comment. Yeah, ditto that Tex.

                            1 Reply Last reply Reply Quote 0
                            • 1 / 1
                            • First post
                              Last post