Norton Internet Security logo

Security Update 648 for Norton Internet Security

Jul 11, 2012

Security Updates give the most recent protection content for Norton Internet Security, which protect networked critical systems and remote and mobile users from unwanted network intrusions and hackers, as well as from viruses, Trojans, and worms.

To download and install the Security Update 648 you need to run LiveUpdate feature of Norton Internet Security product. Please note that LiveUpdate definition identifier of Security Update 648 is 20120710.001 and its description was last modified on July 10, 2012 3:43:47 PM PDT.

Security Update 648 adds coverage for the following vulnerabilities and threats:

  • Web Attack: Facebook Fake Offer:
    This signature will detect malicious web pages using manual sharing as spreading vector.

  • Web Attack: Facebook Fake Survey 3:
    This signature will detect malicious web pages using manual sharing as spreading vector.

  • System Infected: ZeroAccess RootKit Activity 6:
    Your computer is infected - Action is recommended, see response section for further details on how to run the removal tool.

    This IPS signature is designed to detect and block the network communications initiated by Trojan.Zeroaccess to prevent the threat from receiving additional commands and further updates even when antivirus might not be able to detect the infection.


  • Web Attack: Microsoft IE CVE-2012-1876:
    This signature detects attempts to exploit a code execution vulnerability in Microsoft Internet Explorer.


Security Update 648 provides updated coverage for the following vulnerabilities and threats:
  • Web Attack: Malicious Executable Download 2:
    This signature detect attempts to download exploits from a malicious toolkit which may compromise a computer through various vendor vulnerabilities.

  • Web Attack: Facebook LikeJacking Attack 23:
    This signature will detect malicious web pages which are used for facebook likejacking attacks.

  • Web Attack: Facebook LikeJacking Attack 37:
    This signature will detect malicious web pages which are used for facebook likejacking attacks.

  • Web Attack: Facebook Manual Share 6:
    This signature will detect malicious web pages using manual sharing as spreading vector.

  • Web Attack: Facebook Manual Share Scam 13:
    This signature will detect malicious web pages which are used for facebook likejacking attacks.

  • System Infected: Tatanga.Trojan Activity:
    It is a banking trojan that drops different malwares to steal banking information once it has infected the system.


Security Update 648 removes coverage for the following vulnerabilities and threats:
  • HTTP ASF StreamProperty BO:
    This signature detects an attempt to exploit a vulnerability in Windows Media Format Runtime which could allow remote code execution.


Symantec Corporation
www.symantec.com

0 comments: (+add yours?)

Post a Comment