Norton Internet Security logo

Security Update 441 for Norton Internet Security

Aug 26, 2011

Security Updates give the most recent protection content for Norton Internet Security, which protect networked critical systems and remote and mobile users from unwanted network intrusions and hackers, as well as from viruses, Trojans, and worms.

To download and install the Security Update 441 you need to run LiveUpdate feature of Norton Internet Security product. Please note that LiveUpdate definition identifier of Security Update 441 is 20110824.030 and its description was last modified on August 25, 2011 6:37:36 PM PDT.

Security Update 441 adds coverage for the following vulnerabilities and threats:

  • Web Attack: Mass Injection Attack:
    This signature detects a mass injection attack which may redirect to a malicious website that can compromise the target computer.

  • System Infected: Backdoor.Vinself Activity:
    This signature will detect network activity of Backdoor.Vinself.

  • Web Attack: Blackhole Toolkit Website 9:
    This signature detects attempts to download exploits from Blackhole toolkit that may compromise a computer through various vendor vulnerabilities.


Security Update 441 provides updated coverage for the following vulnerabilities and threats:
  • HTTP Adobe Acrobat Plugin XSS:
    This signature detects attempts to exploit a vulnerability in the Adobe Acrobat that allows an attacker to execute arbitrary JavaScript.

  • Web Attack: HP OpenView NNM BO:
    This Signature detect attempts to exploit a buffer overflow vulnerability in HP OpenView Network Node Manager.

  • TCP Symantec AMS Command Exec:
    This signature detect execute arbitrary commands in Symantec AMS service.

  • Web Attack: Exploit Kit Variant:
    This signature detect attempts to download exploits from a malicious toolkit which may compromise a computer through various vendor vulnerabilities.

  • Web Attack: Malicious Java Activity 5:
    This signature detects attempts to download malicious JAR files

  • Web Attack: Malicious JavaScript Download:
    This signature detects attempts to exploit machine through malicious JavaScript.

  • Attack: Adobe SWF Embedded MS Word CVE-2011-0611:
    This signature will detect attempts to exploit a remote code execution vulnerability in Microsoft Word.

  • Fake App Attack: Fake AV Website 14:
    A Web based attack relating to misleading applications has been blocked. No further action is required, but you may wish to update your virus definitions and run a full system scan as a precautionary measure.

  • Web Attack: Blackhole Toolkit Website 7:
    This signature detects attempts to download exploits from Blackhole toolkit that may compromise a computer through various vendor vulnerabilities.

  • Fake App Attack: Fake AV Website 20:
    A Web based attack relating to misleading applications has been blocked. No further action is required, but you may wish to update your virus definitions and run a full system scan as a precautionary measure.

  • Web Attack: Malicious Embedded CLSID:
    This signature detects attempts to exploit the user's machine through embedding malicious CLSID's within HTML scripts.

  • Web Attack: Best Pack ToolKit Website:
    This signature detects attempts to download exploits from a Best Pack toolkit which may compromise a computer through various vendor vulnerabilities.

  • Web Attack: Malicious SWF File Download:
    This signature detects an attempt to exploit a vulnerability in Adobe Flash Player which may result in remote code execution.

  • Web Attack: Novell iPrint Client CVE-2010-4321:
    This signature detects attempts to exploit a buffer overflow vulnerability in Novell iPrint Client application.

  • Web Attack: Apache Chunked Encoding CVE-2002-0392:
    This signature detects the attempt to overflow a buffer in various servers accepting HTTP connections.

  • Web Attack: IIS Phone Book CVE-2000-1089:
    This signature detects attempts to exploit a buffer overflow vulnerability in Microsoft Phone Book Service.

  • Attack: HP OpenView NNM CVE-2008-1697:
    This signature detects a buffer-overflow vulnerability in the HP OpenView Network Node Manager.

  • Web Attack: Facebook LikeJacking Attack 4:
    This signature will detect malicious web pages which are used for facebook likejacking attacks.


Security Update 441 removes coverage for the following vulnerabilities and threats:
  • Web Attack: Zombie Toolkit Website:
    This signature detect attempts to download exploits from a malicious toolkit which may compromise a computer through various vendor vulnerabilities.


Symantec Corporation
www.symantec.com

0 comments: (+add yours?)

Post a Comment

Note: Only a member of this blog may post a comment.