|
|
|
 |
Vulnerability Note VU#713620Symantec Norton AntiVirus vulnerable to DoS via the Auto-Protect "SmartScan" featureOverviewSymantec Norton AntiVirus may hang or crash when the Auto-Protect module SmartScan feature scans a renamed file on a network share.I. DescriptionSymantec Norton AntiVirus is an anti-virus product for desktop and enterprise use. The Norton AntiVirus "Auto-Protect" module provides automatic file scanning and detection of viruses, Trojans, and worms. The Auto-Protect module includes a feature called "SmartScan" which, as an alternative to scanning all file types, only scans specifically targeted file types and extensions. A flaw in the SmartScan feature is triggered when a file residing on a network share is renamed that may cause excessive CPU consumption and an eventual system hang or crash as a result.II. ImpactA local authenticated user may be able to cause the system to crash or hang by renaming a file residing on a network share.III. SolutionApply an updateSymantec has released fixes for this problem that are available through the LiveUpdate functionality of the products. Symantec advisory SYM05-006 provides details on obtaining updates through LiveUpdate or other channels.
References
Thanks to Isamu Noguchi, JPCERT, and IPA for reporting this vulnerability. This document was written by Ken MacInnis.
If you have feedback, comments, or additional information about this vulnerability, please send us
email. |
|||||||||||||||||||||||||||||||||||||
|
|||||||||||||||||||||||||||||||||||||||
Get Adobe Reader