The flaw could be exploited by simply sending a malicious email or tricking users to visit a link.
The antivirus engine used in multiple Symantec products has an easy-to-exploit vulnerability that could allow hackers to easily compromise computers.
The flaw was fixed by Symantec in Anti-Virus Engine (AVE) version 20151.1.1.4, released Monday via LiveUpdate. The flaw consists of a buffer overflow condition that could be triggered when parsing executable files with malformed headers.
To read the entire article, please click here.
Source: http://www.csoonline.com/
