• On CHOW: Can girls use the guys' bathroom?
advertisementSamsung's Best HDTV's - Click Here
advertisement
October 21, 2005 7:17 AM PDT

Symantec releases Norton AntiVirus 10.0.2, plugs security holes

by CNET staff
  • Font size
  • Print
  • 2 comments

Symantec has released Norton AntiVirus 10.0.2.

The latest release contains security enhancements for the following components:

  • SmallScanner
  • DiskMountNotify

and includes an update to to the Auto-Protect component.

Specifically, the security update to the DiskMountNotify component includes a fix for a potential vulnerability where the software does not set its execution path environment. Hence a non-privileged user can change their execution path environment. If the user then executes the DiskMountNotify component, it will inherit the changed environment and use it to locate system commands. The DiskMountNotify is configured to run with System Administrative privileges (SUID) and is vulnerable to a potential Trojan horse attack.

The new release is available through the Symantec LiveUpdate mechanism.

Feedback? Late-breakers@macfixit.com.

Resources

  • Norton AntiVirus 10.0.2
  • Late-breakers@macfixit.com
  • More from Late-Breakers
    • Topics:

    News,

    Troubleshooting

    Tags:

    Late-Breakers

    Share:
    Digg
    Del.icio.us
    Reddit
    Recent posts from MacFixIt
    Manage iCal's automatic e-mail generation for invitations
    CNET TV Apple Byte: Apple faces critics
    Weekly Utilities Update: Net Monitor, MiniUsage, TimeMachineEditor, more...
    Odds and Ends: Essential video codec packs for OS X
    Address Book: Unable to add, view contacts
    Persistent 'Faster Browser Search' overtaking Safari's default search
    Quick tip: Faster Time Machine backups
    MacFixIt Answers
    Add a Comment (Log in or register)
    by Barb P November 1, 2005 10:04 PM PST
    I just uninstalled NAV 10.x.
    Installed it a few months ago and from onset
    suspected it to be the cause of slowdowns, more spinning beach balls etc.
    I also noticed it affected some software (Could not access PageSender's web
    support page).
    After installing NAV, in the past couple three months I also experienced a
    couple of Kernel panics - have not had any in years, prior to these past
    months.

    Trying to install hte latest update via Live Update and I received error
    messages about hte Scan Engine being corrupted.

    I have uninstalled NAV with the provided uninstaller. I think my iMac runs
    more quickly again.
    Reply to this comment
    by pshames January 18, 2006 10:20 AM PST
    I just found my system running quite slowly on return from a meeting. In looking at the MAC activity monitor I found that smallscanner was running as Root and using 40-50 % of the CPU on a continuing basis. In this note there was an indication that this component had a security vulnerability, but it was fixed in 10.0.2. i am running this updated version.

    What gives? Why does this need to be chewing up my CPU or is it possibly a corrupted element in the system?
    Reply to this comment
    advertisement

    About MacFixIt

    MacFixIt is CNET's troubleshooting resource for all things Mac. The information here helps you navigate the ins-and-outs of Mac ownership with how-tos, troubleshooting information, news, reviews, and more.

    Add this feed to your online news reader

    Reviews & advice
    Site map
    Editorial policies
    Meet the editors
    How we test
    Forums
    Internet speed test
    Popular topics
    Apple iPhone
    Apple iPod
    Cell phones
    CES 2010
    GPS
    LCD TV
    CNET sites
    CNET Site map
    CNET TV
    Downloads
    News
    Reviews
    Shopper.com
    More information
    Newsletters
    CNET Mobile
    CNET Widgets
    Customer Help Center
    RSS
    CNET API
    About CNET
    sponsored