• Calendar
• A-Z Index

• Yale home
• About Yale
• Academic programs
• Admissions
• Health & medicine
• Working at Yale
• Yale & New Haven
• Yale & the World
• Yale Tomorrow
• News

• Prospective students
• Students
• Parents
• Faculty
• Staff
• Alumni
• Foundations & corporations
• Patients
• Visitors

Find it

• About ITS
• Policies
• Feedback
• Search ITS
• ITS A-Z Index
• System Status

Symantec AntiVirus Corporate Edition (SAV-CE) Vulnerability
Windows Only

Overview

A vulnerability exists that may allow a remote, unauthenticated attacker to execute malicious code. Exploiting this vulnerability can be accomplished without the user's knowledge or interaction.

Affected Software

• Symantec Antivirus 10 version 10 and above
  [NOTE: Symantec Client Security 3.x is also affected, but this is not a University supported software package

Unaffected Software

• Symantec AntiVirus Corporate Edition 8.0, 8.1, 9.0 all programs (builds)
• Norton AntiVirus: No products in the Norton product line are affecte

Solution: Upgrade and/or patch your software to protect against potential related attacks. You must be running a current version of SAV for which Symantec has provided a patch.

• If you are running the SAV 10.x client (either UNmanaged or Managed):
  1. Check to see which Program (build) of SAV 10 you are running by clicking on the Symantec shield icon in your task bar or by choosing Start > Programs > Symantec Client Security > Symantec AntiVirus. This will bring up a window that allows you to view the build number which is in the center under Program Version. In the picture below the build is 10.0.1.1000

     

  2. Choose the appropriate patch for your specific build from the table below. For example, if you are currently running Program (Build) 10.0.1.1000, you would apply patch 10.0.1.1001.

     Version	Program(Build)	Apply this Patch
     10.1	10.1.0.394	10.1.0.396
     10.1	10.1.0.400	10.1.0.401
     10.1	10.1.0.394 64 bit	10.1.0.396
     10.0	10.0.2.2000	10.0.2.2002
     10.0	10.0.2.2001	10.0.2.2002
     10.0	10.0.2.2010	10.0.2.2011
     10.0	10.0.2.2020	10.0.2.2021
     10.0	10.0.1.1007	10.0.1.1009
     10.0	10.0.1.1000	10.0.1.1001

     Once you have downloaded the patch, you must double click the downloaded file and follow the instructions in order to finish the patching process.

  3. If you do not see your version number in the table above, you will need to upgrade your version of SAV. Symantec has not provided patches for all SAV 10 programs (builds). If you are running a program (build) of SAV 10 for which there is not a patch you need to upgrade to the current version of SAV 10 from the software library. Once you have upgraded to that new version the computer will be patched.

If you need assistance please contact the Help Desk (785.3200 or 432.9000).

Additional information:

• Symantec
Symantec Client Security and Symantec AntiVirus Elevation of Privilege (SYM06-010)
• Applying the SYM06-010 point patch for Symantec AntiVirus 10.0 Maintenance Release 1 Maintenance Patch 1
• Applying the SYM06-010 point patch for Symantec AntiVirus 10.0 Maintenance Release 1 Maintenance Patch 1
• Attempting to migrate from 10.x to a newer version fails after becoming infected with a worm which exploits SYM06-010
• W32.Spybot.Worm
• US-CERT vulnerability note
• eEye Digital Security
• Secunia Advisory