High Alert: Security Flaws Found in Symantec Software

Dear Small business owner. Once you buy software – don’t ignore it but frequently update it if updates are available from the software vendor.
ESPECIALLY check for updates for your security products (virus, firewall, etc) and operating system ( if Windows then go to http://www.windowsupdate.com
Smallbusinesscomputing.com writes It pays to listen to computer security alerts — especially when one involves Symantec, a leading maker of software designed to keep your computer safe from viruses and hackers. And this one’s so serious that Symantec’s scrambling to make repairs.
An alert from Cupertino, Calif.-based Symantec described the flaws as “high risk” and warned that a successful exploit could wipe out a user’s computer. Attackers could also execute remote code on the targeted system that could potentially render your computer useless.
The vulnerabilities, first discovered by researchers at eEye Digital Security, affect both enterprise and consumer Norton users. Affected products include the Symantec Client Firewall 5.01 and 5.1.1; the Symantec Client Security 1.0, 1.1, 2.0 (SCF 7.1); the Norton Internet Security and Professional 2002, 2003, 2004; Norton Personal Firewall 2002, 2003, 2004; and the Norton AntiSpam 2004.
Independent research firm Secunia rates the flaws as “extremely critical” because they could lead to a destructive worm attack. Secunia CTO Thomas Kristensen says the vulnerabilities could lead to an attack similar to the Slammer worm that exploited Microsoft SQL servers last year.
“It is important that people patch and upgrade their Symantec Firewall Products today as there is no other effective solution against this,” Kristensen says.