Critical vulnerability in Norton Antivirus and Internet Security
Symantec has revealed the presence of critical vulnerabilities in Norton AntiVirus 2006, Norton Internet Security 2006, Norton Internet Security - Anti Spyware Edition 2005 and Norton System Works 2006, which can be exploited by an attacker to gain control of a Windows PC. The problem is caused by two ActiveX controls (AxSysListView32 and AxSysListView32OAA in NAVCOMUI.DLL), in which unspecified errors occur when processing the AnomalyList and Anomaly objects. According to Secunia, these bugs allow code to be injected onto a computer and executed with the user's privileges. Visiting a crafted website is sufficient to become infected with malware via this vulnerability.
Symantec has released updates to fix the vulnerabilities. These have already been distributed via LiveUpdate. Users who have the automatic update system activated should therefore already be protected. Users who have deactivated LiveUpdate should initiate the update manually. Enterprise products are not affected.
- Symantec ActiveX Control Input Validation Error, security advisory from Symantec
- Symantec Products NavComUI ActiveX Control Code Execution, security advisory from Secunia