|
Date:
September 13, 2006 US Pacific Time
Notification type: New build
Product: Symantec Mail Security for SMTP
Version: 4.1.14
Build: 46
Operating System: Windows 2000, Windows 2003, Solaris
8, 9, &10.
Overview
Symantec has released Symantec Mail Security 4.1.14
build 46 for SMTP for both Windows and Solaris. This
update fixes several problems, and is available for
download from the Platinum Web site.
Recommendation
Symantec encourages you to update to Symantec Mail
Security 4.1.14 build 46 for SMTP if you are experiencing
any of the problems fixed by this build. For more
information about new fixes and enhancements included
in this build, please read the Release Notes available
on the Platinum
Web site.regresa
Date:
September 13, 2006 US Pacific Time
Notification type: General support information
Product: Symantec VelociRaptor
Version: 1310
Overview
In accordance with the Symantec Version Support Policy,
Symantec VelociRaptor 1310 will reach inactive status
in the Symantec product life cycle at the end of September,
2006.
Symantec
Version Support Policy details are available online,
and should be reviewed periodically for specific product
version support
information:
This
is the final notification announcing Symantec VelociRaptor
1310 reaching Inactive status.
Recommendation
Symantec encourages you to upgrade to Symantec Gateway
Security 5600 Series appliance. New features and product
information are detailed on the Platinum
Web site
.regresa
.Date:
September 15, 2006
Notification Type: Security Update
Product: Symantec Client Firewall
Version: 7.1.4 and 8.x
Operating System: Windows 98/Me/NT/2000/XP
Overview
Symantec has posted Intrusion Prevention System (IPS)
signatures to update Symantec Client Firewall versions
7.1.4 and later. Security Update 31 includes additional
detection for known intrusions. Update 32 is a Rapid
Response which includes added detection for Microsoft
Security Advisory 925444.
Recommendation
Symantec encourages you to update to the newest signature
set. This update is available via LiveUpdate.
regresa
Symantec
AntiVirus and Symantec Client Security Elevation of
Privilege
September
13, 2006
Overview
An
elevation of privilege vulnerability in Symantec Client
Security and Symantec AntiVirus Corporate Edition
could potentially allow a local attacker to execute
code with elevated privileges on the target machine.
Affected Products
- Symantec
AntiVirus Corporate Edition versions 10.0, 9.x,
and 8.1
- Symantec
Client Security versions 3.0, 2.x, 1.x
Unaffected Products
- Symantec
AntiVirus Corporate Edition version 10.1
- Symantec
Client Security version 3.1
- Norton
product line
Details
Deral
Heiland of Layered Defense notified Symantec of a
format string vulnerability within Symantec AntiVirus
Corporate Edition. If successfully exploited, the
vulnerability could allow a local attacker to execute
code with elevated privileges on the local system.
In addition, Symantec engineers found a second format
string vulnerability in the alert notification process.
This issue could allow a local user to replace the
alert notification message with a format string which
could cause potentially cause the Real Time Virus
Scan service to crash when the notification message
is displayed following the detection of a malicious
file.
Symantec
Response
Symantec
engineers have verified that these vulnerabilities
exist in the product versions indicated, and have
provided updates to address the issue. Please refer
to our
advisory for any updates on this vulnerablity:
regresa
Date:
September 19, 2006 US Pacific Time
Notification type: New Patch
Product: Symantec Mail Security for SMTP
Version: 5.0.0
Patch: 171
Operating System: Solaris, Linux, Windows
Overview
Symantec has released Patch 171 for Symantec Mail
Security for 5.0 SMTP. This patch resolves various
problems and is available for download from the Platinum
Web site.
Recommendation
Symantec encourages all customers to update Symantec
Mail Security 5.0 for SMTP with Patch 171. For more
information about new fixes and enhancements included
in this patch, please read the Release Notes available
on the Platinum Web site: regresa
Date: September 20, 2006 US Pacific Daylight
Notification Type: Security Update
Product: Symantec Client Firewall
Version: 7.1.4 and 8.x
Operating System: Windows 98/Me/NT/2000/XP Overview
Symantec has posted Intrusion Prevention System (IPS)
signatures to update Symantec Client Firewall versions
7.1.4 and above. Security Update 33 includes additional
detection for known intrusions.
Recommendation
Symantec encourages you to update to the newest signature
set. This update is available via LiveUpdate..regresa
Date:
September 20, 2006 US Pacific Time
Notification type: Security Update
Product: Symantec Gateway Security
Version: 2.0.x
Model: 5400
Overview:
Symantec has released Security Update 33 (SU33) for
Symantec Gateway Security 2.0.x Model 5400. Apply
this security update by running LiveUpdate. For more
information about this update, please see the release
notes at:
Recommendation
Symantec recommends that you schedule automatic LiveUpdate
downloads of Security Updates to maintain the highest
level of protection against emerging threats and security
risks. regresa
.Date:
September 20, 2006 US Pacific Time
Notification type: Security update
Product: Symantec Gateway Security
Version: 5000 Series Version 3.0
Overview
Symantec has released Security Update 25 (SU25) for
Symantec Gateway Security 5000 Series v3.0.
Apply
Security Update 25 by running LiveUpdate. For more
details on this update, please see the release notes
at this.
Recommendation
Symantec strongly recommends that you schedule automatic
LiveUpdate downloads of Security Updates to maintain
the highest level of protection against emerging threats
and security risks.
.regresa
Date: September 21, 2006 US Pacific Time
Notification type: Security update
Product: Symantec Gateway Security
Version: 5000 Series Version 3.0
Overview
Symantec has released Security Update 26 (SU26) for
Symantec Gateway Security 5000 Series v3.0.
Apply
Security Update 26 by running LiveUpdate. For more
details on this update, please see the release notes
at this
Recommendation
Symantec strongly recommends that you schedule automatic
LiveUpdate downloads of Security Updates to maintain
the highest level of protection against emerging threats
and security risks.regresa
.Date:
September 29, 2006 US Pacific Time
Notification type: General support information
Product: Symantec Enterprise Firewall
Version: 8.0.x
Operating System: Solaris 8/9
Symantec
is pleased to announce that support for the Solaris
version of Symantec Enterprise Firewall (SEF) v8.0
will be extended through November 30, 2008. Customers
can renew their Gold Maintenance and Platinum Support
contracts through that date.
Symantec
has extended the support period to enable customers
to make informed decisions about what path to take
when replacing SEF v8.0 firewalls on their Solaris
computers.
Previously,
Symantec recommended that SEF customers migrate to
the Symantec Gateway Security (SGS) product line because
this product line includes the proxy firewall application
from SEF. However, the recent announcement that Symantec
is exiting the custom hardware business, ceasing additional
SGS development, and partnering with Juniper for future
products has made the roadmap less clear at this time.
Over the
next few months, Symantec and Juniper will develop
a roadmap for Juniperâ??s next generation Unified
Threat Management appliances. Because these appliances
will not be available until 2008, extending SEF support
into 2008 provides time for our customers to evaluate
these new appliances.
All
SEF v8.0 Solaris stock numbers (SKUs) that are currently
active will continue to be active for the extended
support period. Customers will be able to purchase
additional node licenses as well as Gold and Platinum
support contracts for one year periods. After November
30, 2007, renewal contracts will be prorated to the
end of support date, November 30, 2008.regresa
Date: September 29, 2006 US Pacific
Time
Notification type: General support information
Product: Symantec Enterprise Firewall
Version: 8.0.x
Operating System: Windows 2000/2003, Solaris 8/9
Overview
In accordance with Symantec's
Version Support Policy, Symantec Enterprise Firewall
8.0.x for Windows 2000/2003 will reach inactive
status in the Symantec product life cycle at the
end of November 2006.
In
addition, support for the Solaris version of Symantec
Enterprise Firewall V8.0 has been extended through
the end of November 2008.
Details
of Symantec's Version Support Policy are available
online, and should be reviewed periodically for
specific product version support information at.
Recommendation
Symantec encourages you to upgrade to Symantec Gateway
Security 3.0 - 5000 Series. New features and product
information are available on the Platinum
Web site. regresa
Date: September
29 US Pacific Time
Notification type: General support information
Product: Symantec Client VPN
Version: 8.0
Overview
In accordance with Symantec's Version Support Policy,
Symantec Client VPN 8.0 will reach inactive status
in the Symantec product life cycle at the end of October
2006.
Details
of Symantec's Version Support Policy are available
online, and should be reviewed periodically for
specific product version support information at
this link.
This
is the final notification announcing Symantec Client
VPN 8.0 reaching Inactive status. The initial notification
was sent on November 4, 2005. You will not receive
any more notices of this product becoming Inactive.
Recommendation
Symantec encourages you to upgrade to Symantec Client
VPN 9.0. New features and product information are
available on the Platinum
Web site. regresa
Date: September
29 US Pacific Time
Notification type: General support information
Product: Symantec Client Security and Symantec Client
Firewall
Version: SCS 1.1.x, SCF 5.1.x
| 