Symantec Antivirus May Execute Virus Code

← Back to Stories (view on slashdot.org)

Symantec Antivirus May Execute Virus Code

Posted by Zonk on Thursday February 10, 2005 @03:35AM from the antivirus-not-so-anti dept.

An anonymous reader writes "Symantec has admitted that a serious vulnerability exists in the way its scanning engine handles Ultimate Packer for Executables. According to a ZDNet article, this means the scanner would execute the malicious program instead of catching it. Tim Hartman, senior technical director for Symantec Asia Pacific, said: "A vulnerability is not a vulnerability till somebody discovers it but because this is now known, somebody could craft an e-mail, mass mailer or a virus that takes advantage of it. It affects our firewalls, antispam, all the retail products and the enterprise products as well"" Symantec recommends you immediately patch your software.

29 of 388 comments (clear)

Obligatory... by ral315 · 2005-02-10 03:38 · Score: 2, Funny

May I be the first to congratulate our executable overlords!
1. Re:Obligatory... by Ford+Prefect · 2005-02-10 04:06 · Score: 1, Funny
  
  Actually, these sorts of bugs are why I don't use antivirus software... ;-)
  
  --
  Tedious Bloggy Stuff - hooray?
Immediate patch... by same_old_story · 2005-02-10 03:38 · Score: 2, Funny

http://fedora.redhat.com/
1. Re:Immediate patch... by lucabrasi999 · 2005-02-10 03:42 · Score: 2, Funny
  
  Thanks. Now, can you explain how my company is to quikly move all of thousands of employees and all of our internal Windows-based applications to redhat in the next 24 hours?
2. Re:Immediate patch... by russint · 2005-02-10 03:50 · Score: 3, Funny
  
  Thanks. Now, can you explain how my company is to quikly move all of thousands of employees and all of our internal Windows-based applications to redhat in the next 24 hours?
  
  Amphetamine.
  
  --
  ^^
Damn! by JanneM · 2005-02-10 03:39 · Score: 3, Funny

No time to waste! Systems may already be infected, so better get offline immediately, review what installed software is at risk and start figuring out a way to get the patches... no, wait, I run linux.

Wonder what's on TV tonight?

--
Trust the Computer. The Computer is your friend.
1. Re:Damn! by spiffyinferno · 2005-02-10 03:42 · Score: 2, Funny
  
  "Wonder what's on TV tonight?" I believe you can catch the systemic failures of windows pc's everywhere in primetime- with a Bill Gates wardrobe malfunction at the break.
  
  --
  What would jesus do.. with open source software?
2. Re: Damn! by Black+Parrot · 2005-02-10 03:53 · Score: 3, Funny
  
  > no, wait, I run linux. Wonder what's on TV tonight?
  
  Switch to Gentoo and you'll have something to do tonight.
  
  --
  Sheesh, evil *and* a jerk. -- Jade
3. Re: Damn! by drinkypoo · 2005-02-10 04:32 · Score: 2, Funny
  
  Switch to Gentoo and you'll have something to do tonight.
  
  And tomorrow night, and the night after that...
  
  --
  "You're right," Fisheye says. "I should have set it on 'whip' or 'chop.'"
Imagine how pissed you would be by Anonymous Coward · 2005-02-10 03:39 · Score: 2, Funny

if you went in for an STD test and they gave you herpes!
1. Re:Imagine how pissed you would be by finse · 2005-02-10 05:20 · Score: 2, Funny
  
  I thought it was odd when the med tech asked me if I wanted a 'happy ending'..
  
  --
  Paranoid tinfoil hat crowd say Y here, everyone else say N.
Re:Immediately patch? Really? by mrighi · 2005-02-10 03:40 · Score: 5, Funny

That's because they gave out the wrong link. What they really meant to say was, "Symantec recommends you immediately patch your software."
Re:huh? by pegasustonans · 2005-02-10 03:43 · Score: 4, Funny

No, you've got it all wrong. The person didn't actually exist, and all of the people who thought about the person existing didn't exist either. And all of the people who thought the person might or might not exist, but probably didn't, and should therefore be disregarded, were very clever and were hired by anti-virus companies to do their PR for them.

--
And all our yesterdays have lighted fools The way to dusty death. --Will
Okay, Farkers... by Mmm+coffee · 2005-02-10 03:43 · Score: 5, Funny

You know all those idiotic flamewars that spring up whenever the "irony" tag is used?

Once and for all - THIS is irony. You can shut up now.
1. Re:Okay, Farkers... by c4miles · 2005-02-10 04:14 · Score: 3, Funny
  
  What, addressing an entire community of /.ers as Farkers whilst making a point about irony?
  
  Yes. This is irony.
Re:huh? by LourensV · 2005-02-10 03:43 · Score: 3, Funny

I think he is a quantum physicist...
Re:Better than just free by lucabrasi999 · 2005-02-10 03:48 · Score: 4, Funny

"Use of AVG Free Edition within any organization or for commercial purposes is strictly prohibited."
I guess Santa isn't Dancing anymore.
Yeah, right. by Black+Parrot · 2005-02-10 03:51 · Score: 1, Funny

> > "A vulnerability is not a vulnerability till somebody discovers it..."

> Huh?

Sir Lancelot: "I hate to go into battle with this big f*ing hole in my chainmail, but fortunately my tabard will hide it."

--
Sheesh, evil *and* a jerk. -- Jade
Here's the scanner source code: by Anonymous Coward · 2005-02-10 03:52 · Score: 2, Funny

#!/bin/sh
echo Scanning...
for file in `find /`
do
sudo $file
if system_still_running
then
echo File $f OK
fi
done
Did I miss something? by Anonymous Coward · 2005-02-10 04:04 · Score: 2, Funny

Did Microsoft buy out Norton last week?
Re:huh? by worst_name_ever · 2005-02-10 04:06 · Score: 4, Funny

You must not have gotten the latest memo from Symantec: "We apologise again for the fault in the antivirus software. Those responsible for sacking the people who have just been sacked, have been sacked."

--

In Soviet Rush, today's Tom Sawyer gets high on you.
Re:huh? by MedBob · 2005-02-10 04:08 · Score: 1, Funny

I've always suspected that they had a cat in a box somewhere....
Re:Yet another reason by kyojin+the+clown · 2005-02-10 04:18 · Score: 3, Funny

Symantec has excellent corporate support and management features
True.
If only it had excellent anti-virus features to go with them.
Re:Immediately patch? Really? by wo1verin3 · 2005-02-10 04:27 · Score: 2, Funny

>> Okay, so I'm being lazy and don't want to call them

Translation: I didn't pay for the software so I can't call them
Quote of the day by ThoreauHD · 2005-02-10 04:37 · Score: 2, Funny

Tim Hartman, senior technical director for Symantec Asia Pacific, said:

"A vulnerability is not a vulnerability till somebody discovers it...

Impressive foresight. Another great security through obscurity business model.

No tiny Tim, if your tire can be flattened, it will be. It's that simple.
Re:Better than just free by Rick+Zeman · 2005-02-10 04:45 · Score: 5, Funny

As long as it's not company policy ie. each employee that uses it is installing it for personal use, it's free.

I worked for a company that refused to pay for AV, and we all had it on our desktops, except the managers.

So what part of "home" did you all deliberately misunderstand?
Re:Immediately patch? Really? by DarKnyht · 2005-02-10 05:16 · Score: 2, Funny

You can always wait and switch to the Microsoft Anti-Virus that will ensure the safety of your computer by making sure it cannot run at all.

--
Voting them all out of office, now that's change I can believe in.
Bad joke by slapout · 2005-02-10 05:26 · Score: 2, Funny

Symantec Antivirus May Execute Virus Code

I don't care if Symantec runs virus code, just as long as windows doesn't.

--
Coder's Stone: The programming language quick ref for iPad
Re:Immediately patch? Really? by Donoho · 2005-02-10 06:49 · Score: 2, Funny

You can always wait and switch to the Microsoft Anti-Virus

I thought this was funny :">

--
Michalangelo Progr