Software // Enterprise Applications
News
11/28/2006
01:09 PM
Connect Directly
RSS
E-Mail
50%
50%

New Bot Exploits Months-Old Symantec Bug

The bot, dubbed Spybot.acyr, includes exploits for seven different vulnerabilities, including five already patched flaws in Microsoft Windows and one within Symantec's enterprise antivirus products.

Symantec on Tuesday warned of a new bot exploiting multiple months-old bugs, including one in its own antivirus scanning engine, and said that it's collected evidence of an attack in progress.

The bot, dubbed Spybot.acyr, includes exploits for seven different vulnerabilities, including five already patched flaws in Microsoft Windows and one within Symantec's enterprise antivirus products. The Symantec bug was reported and patched in May.

Of the five Microsoft vulnerabilities leveraged by Spybot.acyr, the oldest harks to 2003, while the most recent was disclosed in August 2006. All have been patched.

"At the present time, we are seeing a spike in traffic on Port 2967 with activity only in the .edu domain," Symantec warned on its security research team's blog Tuesday. "[But] based on [our] intelligence, the impact of the attack is minimal thus far."

SANS Institute's Internet Storm Center also has tracked an increase in traffic on the same port, which is used by Symantec's AntiVirus Corporate Edition, and a back door for an exploit against unpatched systems.

Symantec recommended that users of its corporate antivirus software block port 2967 if they couldn't immediately patch the vulnerability.

Comment  | 
Print  | 
More Insights
Building A Mobile Business Mindset
Building A Mobile Business Mindset
Among 688 respondents, 46% have deployed mobile apps, with an additional 24% planning to in the next year. Soon all apps will look like mobile apps and it's past time for those with no plans to get cracking.
Register for InformationWeek Newsletters
White Papers
Current Issue
InformationWeek Must Reads Oct. 21, 2014
InformationWeek's new Must Reads is a compendium of our best recent coverage of digital strategy. Learn why you should learn to embrace DevOps, how to avoid roadblocks for digital projects, what the five steps to API management are, and more.
Video
Slideshows
Twitter Feed
InformationWeek Radio
Archived InformationWeek Radio
A roundup of the top stories and trends on InformationWeek.com
Sponsored Live Streaming Video
Everything You've Been Told About Mobility Is Wrong
Attend this video symposium with Sean Wisdom, Global Director of Mobility Solutions, and learn about how you can harness powerful new products to mobilize your business potential.