/
Security Response/
Security Updates Detail

Symantec Client Security - Security Update 332

January 5, 2012

Description

Use the LiveUpdate feature of this product to download the security update.

LiveUpdate Defs ID

20120105.01

Security Update 332 adds coverage for the following vulnerabilities and threats:

Name	Severity	BID
Fake App Attack: FakeAV Redirect 11	High
Web Attack: Malicious Facebook Download 2	High
System Infected: HTTP Tidserv Download Request 5	High
System Infected: Trojan Smoaler Activity	High
Web Attack: Facebook LikeJacking Attack 35	High
Web Attack: Facebook LikeJacking Attack 36	High
Web Attack: Malicious Toolkit Variant 29	High	37331
Web Attack: Malicious Java Download 13	High
Fake App Attack: Misleading Application File Download 10	High
Fake App Attack: Misleading Application File Download 11	High
Attack: Cytel StatXact Studio CY3 File	High	49924
Web Attack: Mass SQL Injection Attack 4	High

Security Update 332 provides updated coverage for the following vulnerabilities and threats:

Name	Severity	BID
HTTP MS IE CHM Cross-Domain Redirect	Medium	10472
HTTP MS IE EXE in IMG Code Execution	High	10973
HTTP MS IIS FTP Wildcard DoS	Medium	2717
OS X Help Remote Code Execution	High	10356
HTTP WMP Malformed PNG Handling BO	High	18385
Web Attack: WebViewFolderIcon SetSlice CVE-2006-4690	High	19030
HTTP MSIE VML RecolorInfo Code Exec	High	21930
HTTP DB Software Lab VimpX ActiveX BO	High	23953
HTTP InterActual Player ActiveX BO	High	19205
HTTP Rediff Bol Downloader ActiveX Code Exec	High	21831
HTTP Cyberlink PowerDVD ClavSetting File Overwrite	High	25888
HTTP Data Dynamics Abar File Overwrite	High	24959
HTTP Eltima Vsport ActiveX BO	High	24827
HTTP Innovasys DockStudio ActiveX BO	High	24834
HTTP Clever Internet Suite Overwrite	High	25063
HTTP EDraw Flowchart ActiveX Overwrite	High	26308
HTTP Tencent QQ IM ActiveX BO	High	26613
HTTP IBM Lotus Domino Web Access ActiveX BO	High	26972
HTTP AOL Radio AmpX MediaPlaybackControl ActiveX BO	High	27207
HTTP Gateway CWebLaunchCtl ActiveX File Overwrite	High	27193
Web Attack: Facebook PhotoUploader Action ActiveX	High	27534
HTTP Citrix Presentation Client ActiveX BO	High	21458
HTTP RealPlayer Ierpplug DLL AX DoS	Medium	22811
HTTP IBiz EBanking Active File Overwrite	High	28700
HTTP Safari IE Remote Code Exec	High	29445
HTTP HP ExtractCab ActiveX BO	High	29529
HTTP HP GetFileTime ActiveX BO	High	29531
HTTP HP MoveFile ActiveX BO	High	29532
HTTP HP RegistryString ActiveX BO	High	29534
Web Attack: Malicious Toolkit Variant Activity	High	35759
HTTP Ultra Office HttpUpload ActiveX BO	High	30861
HTTP Windows Media Encoder ActiveX BO	High	31065
HTTP Chilkat XML ActiveX Unsafe Method	High	31332
HTTP Windows Search Code Exec	High
HTTP MSIE Webdav Src BO	High	32586
HTTP Corel Paint Shop PNG BO	High	23698
Web Attack: Malicious Toolkit Variant Activity 11	High	37331
Web Attack: Malicious Toolkit Website 10	High	37331
Web Attack: Blackhole Exploit Kit Website 8	High
Web Attack: Blackhole Toolkit Website 12	High
Fake App Attack: Fake AV Download Request 2	High
Web Attack: RealPlayer RecordClip Param Injection	High	44443
Web Attack: Malicious File Download Request 10	High	37331
Web Attack: Facebook LikeJacking Attack 11	High
Web Attack: Facebook LikeJacking 13	High
Web Attack: Malicious Executable Download 2	High	37331
Web Attack: Malicious Exploit Kit Website 6	High	37331
Web Attack: Blackhole Exploit Kit Website 11	High
Web Attack: Facebook LikeJacking Attack 23	High
Web Attack: Oracle Java Rhino Script Engine CVE-2011-3544	High	50218
Web Attack: Malicious Facebook Download	High

* Signature names may have been updated to comply with an updated IPS Signature naming convention. See http://www.symantec.com/business/support/index?page=content&id=TECH152794&key=54619&actp=LIST for more information.

Last modified on: January 5, 2012 9:22:57 PM PST

Symantec [+]
Norton [+]
- AntiVirus|
- Norton Store|
- Internet Security|
- Mac AntiVirus|
- Mobile Security|
- Norton|
- Spyware|
- Virus Protection|
- Virus Removal|
- Virus Scan
Website Security Solutions [+]
PC Tools [+]

PRODUCTS & SERVICES

POPULAR PRODUCTS

SOLUTIONS

HOW TO BUY

RESOURCES

COMMUNITIES: SYMANTEC CONNECT

Trust the Leader

Symantec SSL Certificates

PRODUCT SUPPORT

PRODUCT SUPPORT FOR ACQUIRED COMPANIES

LICENSING & ACCOUNT MANAGEMENT ASSISTANCE

BUSINESS SUPPORT RESOURCES

COMMUNITIES: SYMANTEC CONNECT

NORTON COMMUNITY

SOCIAL MEDIA

Information Unleashed

The Official Voice of Symantec

STAY SECURE

Updates

Repair

BE INFORMED

24/7 Reporting

Security Technology and Response

PUBLICATIONS

CONTACT US ABOUT

2013 Internet Security Threat Report

Symantec data and analysis on the threat landscape.

TRIALWARE

All Business Trialware

BUY ONLINE

Website Security Solutions

Shop All Business

SHOP NORTON

Most Popular

New Products

My Norton Product

See all Norton offerings