Norton Internet Security logo

Security Update 582 for Norton Internet Security

Apr 3, 2012

Security Updates give the most recent protection content for Norton Internet Security, which protect networked critical systems and remote and mobile users from unwanted network intrusions and hackers, as well as from viruses, Trojans, and worms.

To download and install the Security Update 582 you need to run LiveUpdate feature of Norton Internet Security product. Please note that LiveUpdate definition identifier of Security Update 582 is 20120401.001 and its description was last modified on April 2, 2012 4:07:58 PM PDT.

Security Update 582 adds coverage for the following vulnerabilities and threats:

  • System Infected: Tidserv Activity 4:
    Your computer is infected - Action is recommended, see response section for further details on how to run the removal tool.

    This IPS signature is designed to detect and block the network communications initiated by Backdoor.Tidserv to prevent the threat from receiving additional commands and further updates even when antivirus might not be able to detect the infection.


  • Web Attack: Malicious JAR File Download 10:
    This signature detects attempts to download malicious JAR files.

  • Web Attack: Malicious Executable Download 4:
    Scripts may be downloaded by a browser but be specified as an image, thus evading some types of monitoring software.


Security Update 582 provides updated coverage for the following vulnerabilities and threats:
  • Web Attack: Blackhole Toolkit Website 3:
    This signature detects attempts to download exploits from Blackhole toolkit that may compromise a computer through various vendor vulnerabilities.

  • Web Attack: Blackhole Toolkit Website:
    This signature detect attempts to download exploits from a malicious toolkit which may compromise a computer through various vendor vulnerabilities.

  • Web Attack: Malicious Toolkit Website 10:
    This signature detect attempts to download exploits from a malicious toolkit which may compromise a computer through various vendor vulnerabilities.

  • Web Attack: Malicious Java Download 13:
    This signature detects attempts to download malicious JAR files

  • Web Attack: Manual Sharing Scam:
    This signature will detect malicious web pages which are used for facebook likejacking attacks.

  • Web Attack: Malicious Executable Download 3:
    Scripts may be downloaded by a browser but be specified as an image, thus evading some types of monitoring software.

  • Web Attack: Malicious Java Class Download 4:
    This signature detects attempts to download malicious JAR files

  • Web Attack: Malicious Website Accessed 2:
    This signature detect attempts to access a known malicious website.


Security Update 582 removes coverage for the following vulnerabilities and threats:
  • MSIE GDI VML Gradiant Size BO:
    This signature detects an attempt to exploit a buffer overflow vulnerability in GDI+ may result in remote code execution.


Symantec Corporation
www.symantec.com

0 comments: (+add yours?)

Post a Comment