Initial Publication Date: Advisory Status: Advisory Severity: CVSS Base Score:Legacy ID
19 Oct 2005 Closed Medium 7.2 SYM05-020
Risk Impact Medium
Exploit publicly available
Norton AntiVirus for Macintosh
Live Update Patch
French, German, Italian
Additional Product Information
Not Affected Product(s)
Symantec AntiVirus for Macintosh
The DiskMountNotify component of Symantec Norton AntiVirus for Macintosh does not set its execution path environment. A non-privileged user can change their execution path environment. If the user then executes the DiskMountNotify component, it will inherit the changed environment and use it to locate system commands. The DiskMountNotify is configured to run with System Administrative privileges (SUID) and is vulnerable to a potential Trojan horse attack.
The Common Vulnerabilities and Exposures (CVE) initiative has assigned CVE Candidate CVE-2005-3270 to this issue.
This issue is a candidate for inclusion in the CVE list (http://cve.mitre.org), which standardizes names for security problems.
A patch has been created and made available for all affected version of the product through Symantec LiveUpdate.
To perform a manual update using Symantec LiveUpdate, users should:
Open any installed Symantec product
Click on LiveUpdate in the toolbar
Run LiveUpdate until all available Symantec product updates are downloaded and installed
Symantec is not aware of any active attempts against or customers impacted by this issue.
As a part of normal best practices, users should keep vendor-supplied patches for all application software and operating systems up-to-date. Symantec strongly recommends any affected customers update their product immediately to protect against these types of threats.
Symantec thanks iDefense, for notification of this issue and coordinating disclosure as it was resolved
10/21/2005 - Update DiskMountNotify advisory with new CVE number
This is machine translated content
Login to Subscribe
Please login to set up your
Would you like to be subscribed to future notifications for this article?
For security reasons, your link to this document has expired. Please click on the attachment link to access this file.
The attachment that you are looking for no longer exists.
There has been an issue retrieving your attachment. Please try again.
Currently server is down.
Didn't find the article you were looking for? Try these resources.