EFS Network Management - Symantec and Norton Security Products Contain Critical Vulnerabilities

Symantec and Norton Security Products Contain Critical Vulnerabilities

The Department of Homeland Security US-CERT National Cyber Awareness System has issued an alert notice that Symantec and Norton branded antivirus products contain multiple vulnerabilities.

Administrators should review DHS US-CERT Alert TA16-187A.

The vulnerabilities are across multiple platforms such as OSX, Windows and Linux. The severity of these vulnerabilities will allow remote code execution at root or SYSTEM privilege. These issues make this a very serious event.  Some of the vulnerabilities do not require user interaction and are network-aware, which could result in a wormable-event.

EFS Network Management encourages users and administrators to update and patch Symantec and Norton antivirus products as soon as possible.

Symantec has provided patches and hotfixes for theses vulnerabilities in SYM16-008 and SYM16-010 security advisories.

As with any software update there maybe issues. There are no known issues with the updates at this time of this posting.

If issues do arise, please reboot the system to see if it will self-heal and recover. If it does not recover please open a EFS Network Management Support Request and we will take a look at the issues or you can contact us for help.