Norton Internet Security logo

Security Update 508 for Norton Internet Security

Dec 7, 2011

Security Updates give the most recent protection content for Norton Internet Security, which protect networked critical systems and remote and mobile users from unwanted network intrusions and hackers, as well as from viruses, Trojans, and worms.

To download and install the Security Update 508 you need to run LiveUpdate feature of Norton Internet Security product. Please note that LiveUpdate definition identifier of Security Update 508 is 20111206.001 and its description was last modified on December 6, 2011 4:42:48 PM PST.

Security Update 508 adds coverage for the following vulnerabilities and threats:

  • Web Attack: Malicious Toolkit Iframe Injection 8:
    It is an attack where an iframe which points to a malicious site is injected in large number of clean websites.

  • Web Attack: JRE Trusted Method Chaining CVE-2010-0840 9:
    This signature detects an attempt to detect vulnerability in Java which may result in remote code execution.


Security Update 508 provides updated coverage for the following vulnerabilities and threats:
  • Web Attack: JRE Trusted Method Chaining Vulnerability CVE-2010-0840:
    This signature detects an attempt to detect vulnerability in Java which may result in remote code execution.

  • Web Attack: Malicious SWF File Download:
    This signature detects an attempt to exploit a vulnerability in Adobe Flash Player which may result in remote code execution.

  • Web Attack: Blackhole Exploit Kit Website 11:
    This signature detects attempts to download exploits from Blackhole toolkit that may compromise a computer through various vendor vulnerabilities.

  • Fake App Attack: Fake AV Redirect 28:
    A Web based attack relating to misleading applications has been blocked. No further action is required, but you may wish to update your virus definitions and run a full system scan as a precautionary measure.

  • Web Attack: Malicious Injected Javascript 10:
    This signature detects attempts to exploit machine through malicious JavaScript.

  • Web Attack: Oracle Java Rhino Script Engine CVE-2011-3544:
    This signature detects attempts to exploit Rhino Script Engine Remote Code Execution Vulnerability.

  • Web Attack: Malicious Facebook Download:
    This signature will detect malicious web pages which are used for facebook likejacking attacks.


Symantec Corporation
www.symantec.com

0 comments: (+add yours?)

Post a Comment