In the short time I've been here I have been able to recieve and (hopefully) give good info. I am glad to see a forum which embraces windows98, windows95 and DOS along with the newer O/Ss. Thanks to the moderators for all there help. I will be hanging around this site from now on - Merrick 
Security hole hits Symantec corporate security software
Posted by: Tweaker
Date added: 22:43, 29th August 2005 GMT
Source: vnunet.com
Symantec has issued a patch for a security hole in its Symantec Corporate Edition 9.0 and Symantec Client Security 2.0 products. The flaw was first reported by iDefense Labs and could allow a user to gain access to gain privileged access to files and functionalities on the local system through the software's help function.
The help software uses the same html format that is used for web pages. But the help functionality is granted privileged access even if the user has only restricted rights. By manipulating the user interface, a user could use those rights to browse all system files or execute applications that is isn't supposed to. Because the flaw can not be exploited remotely, Symantec ranked its risk as 'medium'.
Tools: Post a comment | Link to this news item | Send to a friend | Submit News
Error: You are not logged in.
In order to leave comments to news articles you must be a Cyber Tech Help Member.
Registration is completely free! 
Register to become a member
Along with access to leave comments to news articles you will be able to ask any computing questions you might have on the Cyber Tech Help Forums.
