Symantec comes clean on Norton rootkit
Posted on 12 Jan 2006 at 15:17
Popular consumer security software vendor Symantec has come a cropper over use of 'rootkit' technology in its products.
The news couldn't have come at a worse time, in the shadow of the Sony rootkit fiasco, which ended in court settlements whereby the music giant offered replacements, refunds and free music in a bid to placate public outcry.
Symantec, for its part, has issued a fix for an element in its Norton SystemWorks and Premier range which recovers deleted data.
The NProtect directory temporarily stores copies of files that have been deleted or modified. If a user accidentally deletes a valuable file from the Recycle Bin in Windows, then Norton will be able to recover it from the NProtect folder.
But Symantec didn't want users to see the folders, in case they accidentally deleted the contents here too. So it made the folder invisible to Windows. And being invisible to Windows, it is also invisible to programs running on Windows. Like antivirus programs, for example. So any malicious files stored in the NProtect directory wouldn't be scanned.
Symantec has now decided that this is not necessarily a good thing. It has issued an update to the software to reveal it in Windows.
It says the program can be updated simply by running the update feature of the software, but adds that it will require a reboot.
It claims the risks associated with the hidden directory are low, as it can not be exploited remotely and an attacker would have to successfully authenticate themselves to gain access.
The company is not aware of any malicious code built to exploit the directory at the present time.
For more information visit the Symantec website.
Author: Matt Whipp
advertisement
- Why Britain's watchdogs have fewer teeth than goldfish
- Tabbed documents: how to make Office 2010 great
- Outlook 2010 People Pane – does it spell death to Xobni
- Microsoft Outlook 2010 screenshots
- Co-Authoring in Word 2010 and SharePoint Foundation 2010
- Microsoft Outlook 2010 screenshots: Backstage view
- Flash 10.1: Developing for Desktop and Device
- Microsoft Office 2010 screenshots: Recover unsaved items
- Microsoft Word 2010 screenshots: Text Effects
- Microsoft Word 2010: inserting screenshots
- Getting to grips with Microsoft's IT Health Environment Scanner
- Virtualise your servers
- The changing face of travel gadgets
- Build your own distributed file system
- The bulletproof Dell that costs an arm and a leg
- Microsoft Office 2010 Technical Preview: Q&A
- Lawnmowers, the TyTN II and one odd insurance request
- There'll never be a bulletproof OS
- How far can we trust apps?
- Five nice touches in Outlook 2010
advertisement
Printed from www.pcpro.co.uk

