Symantec Provides Detection For Remote Explorer Virus
Norton AntiVirus Technology Provides Immediate Detection
CUPERTINO, Calif --December 23, 1998-- Symantec
Corporation (Nasdaq: SYMC), the world leader in utility software for business and personal
computing, today announced that within eight hours after receiving a sample of the "Remote Explorer"
virus, the Symantec AntiVirus Research Center (SARC), in collaboration with IBM's T.J. Watson
Research Center, posted a new set of virus definitions with complete detection of this new virus
across all platforms. Norton AntiVirus customers can click the LiveUpdate button in the software to
be protected immediately. Customers can also download the Intelligent Updater from the Symantec Web
site at www.symantec.com. The SARC group will be working through the holidays to create a repair for
this virus and expect to post this solution early next week.
Symantec is able to provide customers with immediate protection against Remote Explorer because of
the engine architecture in Norton AntiVirus. The Norton AntiVirus extensible engine, or NAVEX,
allows Symantec to provide critical engine updates across all platforms in small, downloadable
files. By using the normal LiveUpdate procedures to update regular virus definitions, customers
also receive updates to the engine which are automatically installed. There is no need for a
standalone tool or an additional product installation to protect against this new threat.
"The Symantec AntiVirus Research Center believes that so far this virus is an isolated incident that
has not affected any additional customers including IBM AntiVirus and Intel LanDesk VirusProtect
users," said Enrique Salem, vice president of Symantec's Security and Assistance Business Unit. "It
is not a threat to the general public at this time, however administrators and end-users should make
sure they have current anti-virus protection running in real time."
This virus has been designed to spread through the network to Windows NT systems. In order for it
to automatically spread to other Windows NT systems, the virus needs to be introduced into an
administrator's account using the necessary privileges. This virus cannot automatically pass
through properly configured corporate firewalls.
To check a Windows NT system for this virus, administrators can look in the "Service" applet in the
control panel. If there is a service called "Remote Explorer", the system may be infected by this
virus. Customers who believe they are infected with this virus can submit samples of the potentially
infected file to firstname.lastname@example.org with the e-mail title of "Remote Explorer". Norton AntiVirus
5.0 customers can submit the file using the Scan and Deliver feature in the product.
Symantec is the world leader in utility software for business and personal computing.
Symantec products and solutions help make users productive and keep their computers
safe and reliable anywhere and anytime. Symantec offers a broad range of solutions
and is acclaimed as a leader in both customer satisfaction and product brand
recognition. Symantec is traded on Nasdaq under the symbol SYMC. More information
on the company and its products can be obtained at www.symantec.com.
NOTE TO EDITORS: If you would like additional information on Symantec Corporation and its products,
view the Symantec Press Center at www.symantec.com/PressCenter/ on Symantec's Website.
Brands and products referenced herein are the trademarks or registered trademarks of their
respective holders. All prices noted are in US dollars and are valid only in the United States.