Endpoint Protection

  • 1.  Insecure Library Loading Could Allow Remote Code Execution

    Posted Aug 30, 2010 01:14 PM
    Have symantec definitions been updated to protect against Microsoft Security Advisory (2269637) Insecure Library Loading Could Allow Remote Code Execution http://www.symantec.com/security_response/threatcon/index.jsp


  • 2.  RE: Insecure Library Loading Could Allow Remote Code Execution

    Posted Aug 30, 2010 02:40 PM
    Hi,

    This is a vulnerability in Windows OS. I think Symantec can create an IPS signature for preventing this, not an AV signature.

    Aniket


  • 3.  RE: Insecure Library Loading Could Allow Remote Code Execution

    Posted Aug 30, 2010 04:34 PM
    OK, so is the new vulnerability protected by an IPS signature?


  • 4.  RE: Insecure Library Loading Could Allow Remote Code Execution
    Best Answer

    Posted Aug 30, 2010 04:59 PM
    I could not find an IPS signature for this yet.  However, since this is a vulneraility in the Windows OS, not in a Symantec produc, I am afraid we may have to wait till the second tuesday of Sept, so that microsoft will release a secrity patch for this.

    Microsoft has released a tool to take care of this vulnerabilty. It can be found in the link below:

    http://support.microsoft.com/kb/2264107

    Aniket