0-days found in Symantec Endpoint Protection
Posted on 30 July 2014.
While testing of the systems and networks of a financial services company, a team of penetration testers from Offensive Security have unearthed a number of vulnerabilities, including three privilege escalation zero-day bugs affecting Symantec Endpoint Protection, the firm's security software of choice.

"Ironically, the same software that was meant to protect the organization under review was the reason for its compromise," they noted, and posted a video demonstrating the exploitation of a 0-day in the security solution.

The biggest irony is that Symantec Endpoint Protection, among other things, aims to protect users against zero-day attacks.

The company has shared information about some of the found vulnerabilities with CERTs, but others will be studied during the company's Advanced Windows Exploitation (AWE) course next week at the Black Hat 2014 conference.

According to Jeremy Kirk, Symantec has also been made aware of the existence of these flaws and they are looking into the matter.

As Joxean Koret, a researcher with Singapore-based Coseinc, has recently noted, installing any application on your computer makes you a bit more vulnerable, and that includes security software.

Your attacks surface increases, and there is no guarantee that the security application itself does not have more or less critical security flaws that can be exploited. Security software is as vulnerable to attacks as any other application, he says, adding that he found that some security solutions can also lower the operating system exploiting mitigations.









Spotlight

How to talk infosec with kids

Posted on 17 September 2014.  |  It's never too early to talk infosec with kids: you simply need the right story. In fact, as cyber professionals itís our duty to teach ALL the kids in our life about technology. If we are to make an impact, we must remember that children needed to be taught about technology on their terms.


Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.
  



Daily digest

Receive a daily digest of the latest security news.
  

DON'T
MISS

Thu, Sep 18th
    COPYRIGHT 1998-2014 BY HELP NET SECURITY.   // READ OUR PRIVACY POLICY // ABOUT US // ADVERTISE //