SI
SI
discoversearch

We've detected that you're using an ad content blocking browser plug-in or feature. Ads provide a critical source of revenue to the continued operation of Silicon Investor.  We ask that you disable ad blocking while on Silicon Investor in the best interests of our community.  If you are not using an ad blocker but are still receiving this message, make sure your browser's tracking protection is set to the 'standard' level.
Pastimes : Computer Learning
 Public ReplyPrvt ReplyMark as Last ReadFilePrevious 10Next 10PreviousNext  
To: Ed Forrest who wrote (22862)10/17/2001 9:30:53 PM
From: thecow  Read Replies (1) of 110652
 
Ed

I just read an answer from Symantec concerning the Liveupdate security issue. Thought you'd be interested.

From Langa (edit in) 'plus addition subscribers link...standard free link should be available tomorrow.'

langalist.com

About That LiveUpdate Security Hole...
In the last issue, we discussed a vulnerability in Symantec's LiveUpdate software (see langa.com ). Here's more information:

Hi Fred, here are some links to the Liveupdate vulnerability. theregister.co.uk , and sarc.com . Great news letter...Kenneth Masson

Hi Fred, I became aware of this issue last week and contacted Symantec. Below is what they had to say

Hello Rob, Welcome to Symantec's online technical support discussion forum....I understand that you are worried if this is true. Let me assist you with more information. LiveUpdate... The improvements Symantec introduced in LiveUpdate 1.6 and higher are actually "best practice security". It would be advisable to update all Symantec products using LiveUpdate to version 1.6. The latest LiveUpdate 1.6.x is available from the URL symantec.com .... We assure you that you will be secure from the latest viruses by using our latest product along with LiveUpdate 1.6....Symantec Consumer Technical Support

That still leaves me with the question what about version 1.6? They assure me that using 1.6 will secure me from the latest viruses, but what about the security hole? I didn't get the answer I was looking for... Thanks for a great newsletter! Rob Eckert

Because it uses standard Internet connection/file-transfer techniques, 1.6 is vulnerable to standard Internet attack techniques such as redirection and denial of service, but these are not unique flaws in 1.6--- they're part of the everyday risks of being online. However, the really bad security hole in LiveUpdate 1.4, by which malicious hackers could install hostile code on your system, seems to have been removed from 1.6.
Report TOU ViolationShare This Post
 Public ReplyPrvt ReplyMark as Last ReadFilePrevious 10Next 10PreviousNext  

HomeMailHotSubjectMarksPeopleMarksKeepersSettings
Terms Of UseContact UsCopyright/IP PolicyPrivacy PolicyAbout UsFAQAdvertise on SI
© 2026 Knight Sac Media.  Data provided by Twelve Data, Alpha Vantage, and CityFALCON News