Virus.Org IT Security News and Information Portal. We offer the latest IT security news, updates, product reviews, books, and articles for all you IT security professionals out there. Enter and get the best IT security information on the Internet.

 
. Welcome to the Virus.Org Mailing List Archive  
.
.


[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]


Re: [ISN] Security hole found in Symantec update tool
.

  • To: [EMAIL PROTECTED]
  • Subject: Re: [ISN] Security hole found in Symantec update tool
  • From: InfoSec News <[EMAIL PROTECTED]>
  • Date: Mon, 15 Oct 2001 07:44:17 -0500 (CDT)
.
 
Forwarded from: Paul Cardon <[EMAIL PROTECTED]>

InfoSec News wrote:
 
> While acknowledging the vulnerability, Symantec blamed much of the
> problem on inherent flaws in the domain name system (DNS), the
> format used to identify servers on the Internet. "The DNS
> attacks...have been widely known to be an Internet infrastructure
> problem, not a Symantec product problem, for some time and have
> been utilized in many well-publicized DNS spoofing, redirection,
> cache poisoning attacks," a Symantec statement said.

Bah.  It IS a Symantec product problem because they were relying on an
intrustable infrastructure rather than using a mechanism to actually
authenticate the Live Update server or the data it provides to the
client like they do with the newer version.  Blaming the
infrastructure is disingenuous at best.  If a system is to be secure,
the trustability and validity of ALL externally provided input must be
considered.

-paul



-
ISN is currently hosted by Attrition.org

To unsubscribe email [EMAIL PROTECTED] with 'unsubscribe isn' in the BODY
of the mail.
 
.
.
 
Copyright (c) Virus.Org 1997-2006.
All Trademarks Acknowledged.
Please view our Terms and Conditions and our Privacy Policy.