|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
[SA10609] Symantec Automatic LiveUpdate Privilege Escalation Vulnerability
From: Secunia Security Advisories (sec-adv
secunia.com)
Date: Tue Jan 13 2004 - 08:12:56 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
TITLE:
Symantec Automatic LiveUpdate Privilege Escalation Vulnerability
SECUNIA ADVISORY ID:
SA10609
VERIFY ADVISORY:
http://www.secunia.com/advisories/10609/
CRITICAL:
Less critical
IMPACT:
Privilege escalation
WHERE:
Local system
SOFTWARE:
Symantec Windows LiveUpdate 1.x
Symantec AntiVirus for Handhelds 3.x
Norton SystemWorks 2004
Norton SystemWorks 2003
Norton SystemWorks 2002
Norton SystemWorks 2001
Norton Internet Security 2004 Professional
Norton Internet Security 2004
Norton Internet Security 2003 Professional
Norton AntiVirus 2001
Norton AntiVirus 2002
Norton AntiVirus 2003
Norton AntiVirus 2004
Norton Internet Security 2001
Norton Internet Security 2002
Norton Internet Security 2003
DESCRIPTION:
KF has discovered a vulnerability in Symantec LiveUpdate, which can
be exploited by malicious, local users to gain escalated privileges
on a vulnerable system.
The problem is that Symantec LiveUpdate invokes the "LiveUpdate Help"
window with SYSTEM privileges. This can be exploited to execute
arbitrary commands on a system with escalated privileges.
The vulnerability affects the following products:
* Symantec LiveUpdate 1.70.x through 1.90.x
* Norton SystemWorks 2001-2004
* Norton AntiVirus (and Pro) 2001-2004
* Norton Internet Security (and Pro) 2001-2004
* Symantec AntiVirus for Handhelds v3.0
SOLUTION:
Apply fix via LiveUpdate or install LiveUpdate 2.0 manually:
http://www.symantec.com/techsupp/files/lu/lu.html
PROVIDED AND/OR DISCOVERED BY:
KF, Secure Network Operations.
ORIGINAL ADVISORY:
Symantec:
http://www.sarc.com/avcenter/security/Content/2004.01.12.html
Secure Network Operations:
http://www.secnetops.biz/research/advisories/SRT2004-01-09-1022.txt
----------------------------------------------------------------------
About:
This Advisory was delivered by Secunia as a free service to help
everybody keeping their systems up to date against the latest
vulnerabilities.
Subscribe:
http://www.secunia.com/secunia_security_advisories/
Definitions: (Criticality, Where etc.)
http://www.secunia.com/about_secunia_advisories/
Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.
----------------------------------------------------------------------
Unsubscribe: Secunia Security Advisories
----------------------------------------------------------------------
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]