Norton Internet Security logo

Security Update 589 for Norton Internet Security

Apr 12, 2012

Security Updates give the most recent protection content for Norton Internet Security, which protect networked critical systems and remote and mobile users from unwanted network intrusions and hackers, as well as from viruses, Trojans, and worms.

To download and install the Security Update 589 you need to run LiveUpdate feature of Norton Internet Security product. Please note that LiveUpdate definition identifier of Security Update 589 is 20120411.001 and its description was last modified on April 11, 2012 2:56:25 PM PDT.

Security Update 589 adds coverage for the following vulnerabilities and threats:

  • Web Attack: Malicious Toolkit Website 14:
    This signature detect attempts to download exploits from a malicious toolkit which may compromise a computer through various vendor vulnerabilities.

  • Web Attack: Vlc Media Player Subtitle CVE-2008-5036:
    This signature detects a stack-based buffer-overflow vulnerability in the VLC media player.

  • Web Attack: IBM Personal Communication Access Worksation Profile CVE-2012-0201:
    This signature detects a stack-based buffer-overflow vulnerability in IBM Personal Communications.


Security Update 589 provides updated coverage for the following vulnerabilities and threats:
  • Web Attack: Phoenix Toolkit Website 5:
    Phoenix is an attack toolkit that allows the remote attacker to perform various malicious actions on the compromised computer.

  • Web Attack: Malicious Toolkit Website 10:
    This signature detect attempts to download exploits from a malicious toolkit which may compromise a computer through various vendor vulnerabilities.

  • Fake App Attack: Fake AV Redirect 21:
    A Web based attack relating to misleading applications has been blocked. No further action is required, but you may wish to update your virus definitions and run a full system scan as a precautionary measure.

  • Web Attack: Blackhole Toolkit Website 14:
    This signature detects attempts to download exploits from Blackhole toolkit that may compromise a computer through various vendor vulnerabilities.

  • Web Attack: Mass Injection Website:
    It is an attack where an iframe which points to a malicious site is injected in large number of clean websites.

  • Web Attack: Malicious JAR File Download 6:
    This signature detects attempts to download malicious JAR files.

  • Malicious Site: Malicious Domain Request 8:
    This signature detects a request to specific domains which characteristically has been known to host malicious exploits and executable files.

  • Malicious Site: Malicious Request:
    You have attempted to visit a known malicious IP address. Visiting this web site could potentially put you at risk to becoming infected. Symantec's Network Threat Protection solution has prevented any potential infection attempts from occurring. You should not have to take any additional actions and are safe from infection. It is recommended that you do NOT visit this site.

  • Web Attack: Malicious Java Download 4:
    This signature detects an attempt to detect vulnerability in Java which may result in remote code execution.


Symantec Corporation
www.symantec.com

0 comments: (+add yours?)

Post a Comment