Norton Internet Security logo

Security Update 407 for Norton Internet Security

Jul 7, 2011

Security Updates give the most recent protection content for NIS product, which protect networked critical systems and remote and mobile users from unwanted network intrusions and hackers, as well as from viruses, Trojans, and worms.

To download and install the Security Update 407 you need to run LiveUpdate feature of Norton Internet Security product. Please note that LiveUpdate definition identifier of Security Update 407 is 20110706.051 and its description was last modified on July 6, 2011 4:55:42 PM PDT.

Security Update 407 adds coverage for the following vulnerabilities and threats:

  • Attack: TFTP Mode:
    This signature detects attempts to exploit a buffer overflow vulnerability in Quick Tftp Server.

  • Fake App Attack: Misleading Application File Download 7:
    A Web based attack relating to misleading applications has been blocked. No further action is required, but you may wish to update your virus definitions and run a full system scan as a precautionary measure.

  • Web Attack: Foxit Reader Javascript Arbitrary File Write:
    This Signature detects attempts to perform arbitrary file creation through vulnerable 'createDataObject()' in Foxit Reader.

  • Web Attack: AOL Desktop RTX:
    This Signature detects attempts to exploit buffer overflow vulnerability in AOL Desktop.

  • Attack: VLC Media Player MKV File CVE-2011-0531:
    This signature detects attempts to a remote code execution vulnerability while processing crafted MKV files through VLC Media Player application.

  • Web Attack: Amaya Web Browser BDO Tag:
    This signature detects attempts to exploit buffer overflow vulnerability in 'bdo'tag in Amaya Web Browser.

  • Web Attack: Apache Chunked Encoding CVE-2002-0392:
    This signature detects the attempt to overflow a buffer in various servers accepting HTTP connections.

  • System Infected: Trojan Downloader Activity:
    This signature detects attempts to post stolen information from victim's machine to the hacker controlled servers.


Security Update 407 provides updated coverage for the following vulnerabilities and threats:
  • Web Attack: Malicious Toolkit Website 7:
    This signature generically detects an attempt to exploit a buffer overflow vulnerability either in a browser or in an ActiveX control.

  • Web Attack: Malicious Toolkit Website 9:
    This signature detect attempts to download exploits from a malicious toolkit which may compromise a computer through various vendor vulnerabilities.

  • Web Attack: Malicious JavaScript Download:
    This signature detects attempts to exploit machine through malicious JavaScript.

  • Web Attack: Blackhole Toolkit Website 7:
    This signature detects attempts to download exploits from Blackhole toolkit that may compromise a computer through various vendor vulnerabilities.

  • Attack: Adobe Flash Embedded SWF CVE-2011-0611:
    This signature will detect attempts to exploit a remote code execution vulnerability in Microsoft Word.


Symantec Corporation
www.symantec.com

0 comments: (+add yours?)

Post a Comment

Note: Only a member of this blog may post a comment.