"Very serious" vulnerability in Norton anti-virus software - US agency
A US federal agency issued a security alert over a vulnerability in Symantec's anti-virus software that allows attackers to remotely control affected computers.
The US Department of Homeland Security's Computer Emergency Readiness Team (US-CERT) said in an alert issued to the security industry on Tuesday that it was a "very serious event."
The agency also advised customers to update their anti-virus software using two patches issued by Symantec. It said all Symantec and Norton-branded anti-virus were affected.
"Symantec and Norton branded antivirus products contain multiple vulnerabilities. Some of these products are in widespread use throughout government and industry. Exploitation of these vulnerabilities could allow a remote attacker to take control of an affected system," the agency said.
"While there has been no evidence of exploitation, the ease of attack, widespread nature of the products, and severity of the exploit may make this vulnerability a popular target," the agency said.