/
Security Response/
Security Updates Detail

Norton Internet Security for Macintosh - Security Update 68

January 10, 2012

Description

Use the LiveUpdate feature of this product to download the security update.

LiveUpdate Defs ID

20120107.001

Security Update 68 adds coverage for the following vulnerabilities and threats:

Name	Severity	BID
Web Attack: Malicious Injected Javascript 3	High
Web Attack: Phoenix Toolkit Website 4	High
Malicious Site: Malicious Web Site, Domain, or URL 2	High
Fake App Attack: Fake AV Redirect 29	High
Web Attack: Malicious Executable Download	High
Fake App Attack: Fake AV Redirect 13	High
Web Attack: Malicious Toolkit Website 26	High	35759
Fake App Attack: FakeAV Redirect 11	High
Web Attack: Blackhole Toolkit Website 12	High
System Infected: ZeroAccess Rootkit Activity	High
Web Attack: Malicious Exploit Kit Website 3	High
Web Attack: Malicious Exploit Kit Website 4	High
Web Attack: JRE Trusted Method Chaining CVE-2010-0840 6	High	39065
System Infected: FakeAV System Security Activity	High
System Infected: IRC Bot C and C Activity	High
Web Attack: Facebook LikeJacking Attack 22	High
Web Attack: Facebook LikeJacking Attack 23	High
Web Attack: Blackhole Exploit Kit Website 12	High
Fake App Attack: Fake AV Redirect 28	High
Web Attack: Trojan Prime Activity	High
Web Attack: Mass Iframe Injection Attack 4	High
Web Attack: Facebook LikeJacking Attack 24	High
Web Attack: Malicious Toolkit Iframe Injection 6	High
Attack: ACDSee Fotoslate PLP File CVE-2011-2595	High	49558
Attack: ACDSee Malicious XMB File	High	37685
Web Attack: Malicious Toolkit Iframe Injection 7	High
Web Attack: Malicious Toolkit Iframe Injection 8	High
Web Attack: Facebook LikeJacking Attack 25	High
Web Attack: Malicious Toolkit Iframe Injection 9	High
Web Attack: Facebook LikeJacking Attack 27	High
Web Attack: Malicious Injected Javascript 10	High
Web Attack: Facebook LikeJacking Attack 29	High
Fake App Attack: Fake AV Website 27	High
Attack: MS Excel Obj Record CVE-2010-0822	High	40520
Web Attack: Oracle Java Rhino Script Engine CVE-2011-3544	High	50218
Web Attack: JRE Trusted Method Chaining CVE-2010-0840 9	High	39065
Web Attack: Facebook LikeJacking Attack 30	High
Web Attack: Malicious Facebook Download	High
Web Attack: Oracle Java Rhino Script Engine CVE-2011-3544 3	High	50218
Web Attack: Malicious Facebook Download 2	High
Web Attack: Exploit kit Website 8	High
Web Attack: Facebook LikeJacking Attack 31	High
Web Attack: Facebook LikeJacking Attack 32	High
Web Attack: Facebook LikeJacking Attack 33	High
Web Attack: Malicious Adobe U3d File Download	High	50922
System Infected: HTTP Tidserv Download Request 3	High
System Infected: HTTP Tidserv Download Request 4	High
Attack: Measuresoft SCADA Command Execution	High	49613
System Infected: HTTP Tidserv Download Request 5	High
System Infected: HTTP Tidserv Download Request 6	High
Web Attack: HP Easy Printer CVE-2011-2404	High	49100
Web Attack :Oracle Autovue SaveViewStateToFile()	High	50321
System Infected: Trojan Smoaler Activity	High
Web Attack :Oracle Hyperion Tlist6 SaveData()	High	50476
Web Attack: Facebook LikeJacking Attack 35	High
System Infected: Trojan Virut Activity 3	High
Web Attack: Facebook LikeJacking Attack 36	High
Web Attack: Malicious Toolkit Variant 29	High
Web Attack: Malicious Java Download 13	High
Fake App Attack: Misleading Application File Download 10	High
Fake App Attack: Misleading Application File Download 11	High
Attack: Cytel StatXact Studio CY3 File	High	49924
Web Attack: Mass SQL Injection Attack 4	High

Security Update 68 provides updated coverage for the following vulnerabilities and threats:

Name	Severity	BID
HTTP MS IE CHM Cross-Domain Redirect	Medium	10472
HTTP MS IE EXE in IMG Code Execution	High	10973
HTTP MS IIS FTP Wildcard DoS	Medium	2717
OS X Help Remote Code Execution	High	10356
HTTP WMP Malformed PNG Handling BO	High	18385
Web Attack: WebViewFolderIcon SetSlice CVE-2006-4690	High	19030
HTTP Verisign ConfigCHK BO	High	22671, 22676
HTTP Leadtools SDK ActiveX BO	High	24053
HTTP LeadTools ISIS Control ActiveX BO	High	24093
HTTP InterActual Player ActiveX BO	High	19205
HTTP AMX VNC ActiveX Control BO	High	24703
HTTP LeadTools Raster File Obj ActiveX BO	High	24133
HTTP Move Media Player Quantum ActiveX BO	High	25529
HTTP XunLei DownURL2 ActiveX File Dwnld	High	25751
HTTP Rediff Bol Downloader ActiveX Code Exec	High	21831
HTTP TEC-IT TBarCode ActiveX File Overwrite	High	24440
HTTP McAfee NeoTrace ActiveX BO	High	21697
HTTP ebCrypt ActiveX File Overwrite	High	25787
HTTP Cyberlink PowerDVD ClavSetting File Overwrite	High	25888
HTTP Data Dynamics Abar File Overwrite	High	24959
HTTP Eltima Vsport ActiveX BO	High	24827
HTTP SmartCode VNC Manager ActiveX BO	High	23869
HTTP Innovasys DockStudio ActiveX BO	High	24834
HTTP Clever Internet Suite Overwrite	High	25063
HTTP EDraw Flowchart ActiveX Overwrite	High	26308
HTTP MS Office Web Component DoS	High	26405
HTTP Tencent QQ IM ActiveX BO	High	26613
HTTP HP Info Center ActiveX Code Exec	High	26823
HTTP IBM Lotus Domino Web Access ActiveX BO	High	26972
HTTP AOL Radio AmpX MediaPlaybackControl ActiveX BO	High	27207
HTTP Gateway CWebLaunchCtl ActiveX File Overwrite	High	27193
HTTP Digital Data Comms Rtsp ActiveX BO	High	27337
HTTP Yahoo! Jukebox MediaGrid ActiveX BO	High	27578
Web Attack: Facebook PhotoUploader Action ActiveX	High	27534
HTTP Citrix Presentation Client ActiveX BO	High	21458
HTTP MS Office Web Component Code Exec	High	28136
HTTP Move MPlayer Quantum AX BO	High	27995
HTTP Kazaa Altnet ActiveX BO	High	25903
HTTP IBiz EBanking Active File Overwrite	High	28700
HTTP Swiftview ActiveX BO	High	27527
HTTP aaxRegistry ActiveX Registry Del	High
HTTP Safari IE Remote Code Exec	High	29445
HTTP HP ExtractCab ActiveX BO	High	29529
HTTP HP GetFileTime ActiveX BO	High	29531
HTTP HP MoveFile ActiveX BO	High	29532
HTTP HP RegistryString ActiveX BO	High	29534
HTTP BlackIce DownloadImage ActiveX BO	High	29579
Web Attack: Malicious Toolkit Variant Activity	High	35759
HTTP Ultra Office HttpUpload ActiveX BO	High	30861
HTTP MS Img Logger ActiveX File Overwrite	High	31069
HTTP Chilkat XML ActiveX Unsafe Method	High	31332
HTTP VeryPDF PDFView AX BO	High	32313
HTTP Windows Search Code Exec	High
HTTP MSIE Webdav Src BO	High	32586
HTTP Corel Paint Shop PNG BO	High	23698
HTTP MS DirectX QuickTime DirectShow Remote Code Exec	High	35139
HTTP EDraw PDF Viewer ActiveX FO	High	35428
HTTP Roxio CinePlayer ActiveX BO	High	23412
HTTP Microsoft OWC Remote Code Execution BO	High	35992
HTTP Quiksoft Easymail AX BO	High	36440
Web Attack: Eleonore Executable Download	High
Web Attack: Malicious Toolkit Request	High
HTTP IE Attribute Handler Code Exec	High	38615
Web Attack: Malicious Toolkit Variant Activity 11	High
Web Attack: Malicious Toolkit Website 7	High	35707, 37085, 50565
Web Attack: Bleeding Life Toolkit Request	High
Web Attack: Malicious PDF File Download	High
Web Attack: Blackhole Toolkit Website 3	High
Fake App Attack: Adware Installer Download	High
Web Attack: Malicious Toolkit Website 9	High
Web Attack: Acrobat PDF Suspicious File Download 8	High	34736
System Infected: Cycbot Backdoor	High
Web Attack: Malicious Toolkit Website 10	High
Web Attack: Blackhole Exploit Kit Website 8	High
Attack: Adobe Embedded SWF CVE-2011-0611	High	47314
Fake App Attack: Fake AV Website 14	High
Fake App Attack: Fake AV Download Request 2	High
Fake App Attack: Fake AV Redirect 21	High
Fake App Attack: Fake AV Website 15	High
Web Attack: JRE Trusted Method Chaining Vulnerability CVE-2010-0840	High	39065
Web Attack: Incognito Toolkit Website	High
Web Attack: Malicious Java File Download 4	High
Fake App Attack: Fake AV Website 21	High
Web Attack: Malicious JavaScript Encoder 4	High
Web Attack: Malicious SWF File Download	High	28695
Web Attack: RealPlayer RecordClip Param Injection	High	44443
Fake App Attack: Fake AV Website 23	High
Web Attack: Mass Iframe Injection Attack 2	High
System Infected: Malicious File Download Request	High
Web Attack: Malicious File Download Request 10	High
Web Attack: Malicious Exploit kit Website	High
Malicious Site: Trojan.Gen.2	High
Web Attack: Malicious Injected Javascript	High
Web Attack: Facebook LikeJacking Attack 11	High
Web Attack: Facebook LikeJacking 13	High
Web Attack: Malicious Executable Download 2	High
Web Attack: Malicious Exploit Kit Website 6	High
Web Attack: Blackhole Exploit Kit Website 9	High
Malicious Site: Gamevance!gen1	High
Web Attack: Adobe Flash CVE-2011-2140	High	49083
Web Attack: Malicious Javascript Website 2	High
Web Attack: Blackhole Exploit Kit Website 11	High
Web Attack: Malicious Injected Javascript 2	High
Web Attack: Malicious Injected Javascript 6	High
Web Attack: Malicious Toolkit Website 12	High
System Infected: FakeAV System Security Activity 2	High

Security Update 68 removes coverage for the following vulnerabilities and threats:

Name	Severity	BID
Web Attack: HTTP MS IE Malf. IFRAME/EMBED CVE-2004-1050	High	11515
Web Attack: Malicious Toolkit File Download	High	35759
Fake App Attack: Fake AV Website 8	High
Fake App Attack: Misleading Application File Download 3	High
Web Attack: Phoenix Toolkit Download	High
Fake App Attack: Fake AV Redirect 15	High
Attack: Apache Mod Rewrite LDAP CVE-2006-3747	High	19204

* Signature names may have been updated to comply with an updated IPS Signature naming convention. See http://www.symantec.com/business/support/index?page=content&id=TECH152794&key=54619&actp=LIST for more information.

Last modified on: January 10, 2012 6:17:02 PM PST

Symantec [+]
Norton [+]
- AntiVirus|
- Norton Store|
- Internet Security|
- Mac AntiVirus|
- Mobile Security|
- Norton|
- Spyware|
- Virus Protection|
- Virus Removal|
- Virus Scan
Website Security Solutions [+]
PC Tools [+]

PRODUCTS & SERVICES

POPULAR PRODUCTS

SOLUTIONS

HOW TO BUY

RESOURCES

COMMUNITIES: SYMANTEC CONNECT

Trust the Leader

Symantec SSL Certificates

PRODUCT SUPPORT

PRODUCT SUPPORT FOR ACQUIRED COMPANIES

LICENSING & ACCOUNT MANAGEMENT ASSISTANCE

BUSINESS SUPPORT RESOURCES

COMMUNITIES: SYMANTEC CONNECT

NORTON COMMUNITY

SOCIAL MEDIA

Information Unleashed

The Official Voice of Symantec

STAY SECURE

Updates

Repair

BE INFORMED

24/7 Reporting

Security Technology and Response

PUBLICATIONS

CONTACT US ABOUT

2013 Internet Security Threat Report

Symantec data and analysis on the threat landscape.

TRIALWARE

All Business Trialware

BUY ONLINE

Website Security Solutions

Shop All Business

SHOP NORTON

Most Popular

New Products

My Norton Product

See all Norton offerings

Double your peace of mind and save 15%