Read more: http://www.informationweek.com/news/...leID=175007150Symantec's line of anti-virus software is vulnerable to attack, a prominent security researcher revealed Tuesday. The bug is currently unpatched, although Symantec has issued an advisory.
The vulnerability, which was discovered and reported by Alex Wheeler, is in how Symantec's AntiVirus Library, part of all the Cupertino, Calif.-based security giant's anti-virus products, handles RAR compressed files. RAR files are created by the WinRAR compression utility, developed and sold by RarLab.
Secunia Adivsory: http://secunia.com/advisories/18131/
The temporary workaround is to disable scanning RAR files in the software. Symantec is working on a patch which will be released this week.
Keep your eyes on this page for the patch:http://securityresponse.symantec.com...05.12.21b.html