/
Security Response/
Security Updates Detail

Norton Internet Security for Macintosh - Security Update 92

November 20, 2012

Description

Use the LiveUpdate feature of this product to download the security update.

LiveUpdate Defs ID

20121116.001

Security Update 92 adds coverage for the following vulnerabilities and threats:

Name	Severity	BID
System Infected: Trojan.Ecltys Activity 2	High
Web Attack: Exploit Toolkit Website 16	High
Attack: HP SiteScope Directory Traversal	High	55273
Attack: TestLink Arbitrary PHP File Upload	High
Attack: JBoss JMXInvokerServlet CVE-2007-1036	High
Attack: MS Windows Common Controls ActiveX CVE-2012-1856	High	54948
Attack: Ricoh DC FTP USER Command CVE-2012-5002	High	52235
Attack: TestLink SQL Injection CVE-2012-0939	High	52086
Attack: ActFax Server Import Users from File BO	High	55457
Attack: qdPM Arbitrary PHP File Upload	High	54022
Attack: Oracle Business Transaction Management Remote Code Execution	High	54839
Attack: MobileCartly Arbitrary File Write	High	54970, 55399
Attack: Sysax Multi Server BO	High	54713
Attack: 7T IGSS Server Directory Traversal CVE-2011-1565	High	46936
Attack: Nullsoft Winamp MAKI BO CVE-2009-1831	High	35052
Attack: Sflog! CMS Arbitrary File Upload	High
Attack: Cyclope Employee Surveillance Solution v6 SQL Injection	High	54938
Attack: Auxilium RateMyPet Arbitrary File Upload	High
Attack: PHP apache_request_headers BO CVE-2012-2329	High	53455
Web Attack: Cisco PlayerPT ActiveX Buffer Overflow CVE-2012-0824 2	High
Attack: HP Application Lifecycle Management Remote Code Execution	High	55272
Attack: activeCollab Chat Module Arbitrary PHP Code Execution	High	53624
Attack: HP Data Protector CVE-2012-0124	High	52431
Web Attack: IrfanView CVE-2012-0897 3	High	51426
Attack: appRain CMF CVE-2012-1153	High	51576
Attack: TurboFTP Server Port Command Processing Buffer Overflow	High	55764
Attack: HP Intelligent Management Centre BO	High	55271
Attack: Horde Groupware Sources Packages Backdoor CVE-2012-0209	High	51989
Attack: Oracle Outside XPM Image Processing CVE-2012-0554	High	53069
Attack: Lattice Semiconductor PAC-Designer BO CVE-2012-2915	High	53566
Web Attack: GE Proficy Historian KeyHelp.ocx CVE-2012-2516	High	55265
System Infected: Trojan.Ransomlock.Q	High
System Infected: Ransomlock Activity 2	High
System Infected: Tidserv Activity 5	High
System Infected: Trojan.Ransomlock.Y	High
Attack: Novell ZENWorks Asset Management CVE-2012-4933	High	55933
Web Attack: Exploit Toolkit Website 38	High
System Infected: Exprez.B Trojan Activity 2	High
Web Attack: Malicious Toolkit Website 45	High
Web Attack: JRE Concurrency CVE-2012-0507 7	High	52161
Attack: Sielco Sistemi Winlog Lite CVE-2012-3815	High	53811
Attack: PHP CGI CVE-2012-1823	High	6875
Web Attack: Trojan.Ransomlock.U Download	High
Web Attack: GE Proficy Historian KeyHelp.ocx CVE-2012-2516 2	High	55265
Attack: Csound CVE-2012-0270	High	52144
Attack: TurboFTP Server Port Command Processing Buffer Overflow 2	High	55764
Web Attack: Trojan.Ransomlock.g8 Download	High
Attack: AjaXplorer Remote Command Injection	High	39334
Web Attack: Malicious Java Download 20	High
Web Attack: Trojan.Ransomlock.g11 Download	High
System Infected: Trojan.Ransomlock.K 2	High
Web Attack: Trojan.Ransomlock.G Download	High
System Infected: Trojan.Ransomlock.K 4	High
Attack: vBSEO Remote Code Execution CVE-2012-5223	High	51647
Attack: Family Connections Remote Command Execution	High	50897
Web Attack: Trojan.Ransomlock.g14 Download	High
System Infected: FakeAV C&C Request	High
Web Attack: Image Viewer CP Pro/Gold SDK ActiveX BO	High	50712
System Infected: Trojan.Pandex Activity	High
Web Attack: Facebook Manual Share Scam 2	High
System Infected: Trojan.Smowbot Activity	High
Web Attack: NTR ActiveX Control CVE-2012-0267	High	51374
Web Attack: NTR ActiveX Control CVE-2012-0266	High	51374
Web Attack: Exploit Toolkit Website 35	High
System Infected: Trojan.Ransomlock.K 5	High
Web Attack: Exploit Toolkit Website 36	High
Attack: Aviosoft DTV Player CVE-2011-4496	High	50582
System Infected: Ransomlock Activity 3	High
Web Attack: Malicious JAR File Download 14	High
System Infected: Trojan.Picsteal Activity	High
System Infected: Trojan.Ransomlock.S 2	High
Web Attack: CritXPack Exploit Kit Download 2	High

Security Update 92 provides updated coverage for the following vulnerabilities and threats:

Name	Severity	BID
HTTP BlackIce Annotation SDK ActiveX BO	High	29635
HTTP Suspicious Executable File Download	High
Web Attack: CrimePack Toolkit JAR Download 2	High	39065
Web Attack: Generic Memory Heap Spray 5	High	35707, 37085, 50565
Web Attack: Malicious PDF File Download	High
Web Attack: Malicious Toolkit Website 9	High
System Infected: Downloader.Ponik Activity	High
Fake App Attack: Fake AV Website 21	High
Web Attack: Malicious Exploit kit Website	High
Web Attack: Malicious Java Download 13	High
Attack: Microsoft Windows True Type Font CVE-2011-3402	High	50462
Web Attack: Malicious Executable Download 3	High
Fake App Attack: Fake AV Redirect 31	High
Web Attack: Exploit Toolkit Website 30	High
Web Attack: Malicious Javascript Website 8	High
Web Attack: Malicious JAR File Download 6	High
Web Attack: Blackhole PDF File Download 3	High
Web Attack: Exploit Toolkit Website 4	High
Web Attack: Exploit Toolkit Website 5	High
Web Attack: Blackhole Toolkit Website 21	High
Web Attack: Exploit Toolkit Website 8	High
Web Attack: Malicious JAR File Download 11	High
Web Attack: Exploit Toolkit Website 31	High
Web Attack: Facebook Fake App Redirect	High
Web Attack: MSIE MSXML CVE-2012-1889 3	High	53934
Web Attack: Blackhole Toolkit Website 28	High
Web Attack: Twitter Fake Offer 2	High
Web Attack: Blackhole Toolkit Website 20	High
Web Attack: FakeAV Download 2	High
Fake App Attack: Fake AV Website 34	High
Web Attack: Malicious SWF File Download 3	High
System Infected: Trojan.Ransomlock.G	High
Web Attack: Malicious JAR File Download 18	High
System Infected: Trojan.Ransomlock.S	High
System Infected: Trojan Hanambot Activity 2	High
Web Attack: Exploit Toolkit Website 33	High
Web Attack: Malicious Java Download 14	High	52161
Web Attack: Facebook LikeJacking Scam 3	High
System Infected: Backdoor.Korplug	High

* Signature names may have been updated to comply with an updated IPS Signature naming convention. See http://www.symantec.com/business/support/index?page=content&id=TECH152794&key=54619&actp=LIST for more information.

Last modified on: November 20, 2012 5:43:03 PM PST

Symantec [+]
Norton [+]
- AntiVirus|
- Norton Store|
- Internet Security|
- Mac AntiVirus|
- Mobile Security|
- Norton|
- Spyware|
- Virus Protection|
- Virus Removal|
- Virus Scan
Website Security Solutions [+]
PC Tools [+]

PRODUCTS & SERVICES

POPULAR PRODUCTS

SOLUTIONS

HOW TO BUY

RESOURCES

COMMUNITIES: SYMANTEC CONNECT

Trust the Leader

Symantec SSL Certificates

PRODUCT SUPPORT

PRODUCT SUPPORT FOR ACQUIRED COMPANIES

LICENSING & ACCOUNT MANAGEMENT ASSISTANCE

BUSINESS SUPPORT RESOURCES

COMMUNITIES: SYMANTEC CONNECT

NORTON COMMUNITY

SOCIAL MEDIA

Information Unleashed

The Official Voice of Symantec

STAY SECURE

Updates

Repair

BE INFORMED

24/7 Reporting

Security Technology and Response

PUBLICATIONS

CONTACT US ABOUT

2013 Internet Security Threat Report

Symantec data and analysis on the threat landscape.

TRIALWARE

All Business Trialware

BUY ONLINE

Website Security Solutions

Shop All Business

SHOP NORTON

Most Popular

New Products

My Norton Product

See all Norton offerings