Symantec users should note that there is a "high risk" software flaw
which affects much of its software products.
The vulnerability is within Symantec AntiVirus Library, which provides file
format support for virus analysis. "During decompression of RAR files,
Symantec is vulnerable to multiple heap overflows allowing attackers complete
control of the system(s) being protected," said security consultant Alex
Wheeler, who first discovered the flaw. "These vulnerabilities can be exploited
remotely, without user interaction, in default configurations through common
protocols such as SMTP."
Google buys 5%
of AOL. IBM will not
participate in the international committee that will standardize Office documents.