14 DAY TRIAL // Symantec is one of the most famous security companies in the world and, in the same time, it is one of the most affected firms by vulnerabilities and security flaws. Today's vulnerability brings Symantec Veritas Storage Foundation in the spotlights as Secunia recently released an advisory that reveals moderately critical vulnerabilities in the security application. The Symantec application is described as the most efficient solution for online storage management because it offers the security features created by the parent company.
"An authentication bypass, remote code execution vulnerability has been identified and resolved in the Symantec Storage Foundation for Windows v5.0 Volume Manager Scheduler Service. Successful exploitation could result in potential compromise of the targeted system. An attacker with network access who could successfully connect directly to the Scheduler Service socket could bypass the built-in authentication in the management console. By properly manipulating this vector, the attacker has the potential to possibly add arbitrary commands to the registry that could be executed during normal scheduled runs," Symantec described the vulnerability.
The only solution to avoid successful exploitations of the vulnerabilities is to install the patches provided by Symantec and available on this link. However, there are some more tips and tricks able to increase your security system and block this flaw exploitation. First of all, you're advised to limit the access to the administration abilities only to trusted and privileged users. Then, you should try to restrict the remote access to your database only to known users and update most of your applications to the latest versions. You should also try to install stand-alone programs able to protect your computer and prevent the intruders.
This year, Symantec was placed among the most vulnerable companies because most of its products were affected by more or less critical flaws. Even the antivirus, Norton Antivirus, was affected by vulnerabilities although its main goal was to protect our computer and fight against threats.