Press Release

LinkedIn Facebook Twitter RSS

Symantec Provides Detection For Remote Explorer Virus

Norton AntiVirus Technology Provides Immediate Detection

CUPERTINO, Calif --December 23, 1998-- Symantec Corporation (Nasdaq: SYMC), the world leader in utility software for business and personal computing, today announced that within eight hours after receiving a sample of the "Remote Explorer" virus, the Symantec AntiVirus Research Center (SARC), in collaboration with IBM's T.J. Watson Research Center, posted a new set of virus definitions with complete detection of this new virus across all platforms. Norton AntiVirus customers can click the LiveUpdate button in the software to be protected immediately. Customers can also download the Intelligent Updater from the Symantec Web site at www.symantec.com. The SARC group will be working through the holidays to create a repair for this virus and expect to post this solution early next week.

Symantec is able to provide customers with immediate protection against Remote Explorer because of the engine architecture in Norton AntiVirus. The Norton AntiVirus extensible engine, or NAVEX, allows Symantec to provide critical engine updates across all platforms in small, downloadable files. By using the normal LiveUpdate procedures to update regular virus definitions, customers also receive updates to the engine which are automatically installed. There is no need for a standalone tool or an additional product installation to protect against this new threat.

"The Symantec AntiVirus Research Center believes that so far this virus is an isolated incident that has not affected any additional customers including IBM AntiVirus and Intel LanDesk VirusProtect users," said Enrique Salem, vice president of Symantec's Security and Assistance Business Unit. "It is not a threat to the general public at this time, however administrators and end-users should make sure they have current anti-virus protection running in real time."

This virus has been designed to spread through the network to Windows NT systems. In order for it to automatically spread to other Windows NT systems, the virus needs to be introduced into an administrator's account using the necessary privileges. This virus cannot automatically pass through properly configured corporate firewalls.

To check a Windows NT system for this virus, administrators can look in the "Service" applet in the control panel. If there is a service called "Remote Explorer", the system may be infected by this virus. Customers who believe they are infected with this virus can submit samples of the potentially infected file to avsubmit@symantec.com with the e-mail title of "Remote Explorer". Norton AntiVirus 5.0 customers can submit the file using the Scan and Deliver feature in the product.

About Symantec
Symantec is the world leader in utility software for business and personal computing. Symantec products and solutions help make users productive and keep their computers safe and reliable anywhere and anytime. Symantec offers a broad range of solutions and is acclaimed as a leader in both customer satisfaction and product brand recognition. Symantec is traded on Nasdaq under the symbol SYMC. More information on the company and its products can be obtained at www.symantec.com.

NOTE TO EDITORS: If you would like additional information on Symantec Corporation and its products, view the Symantec Press Center at www.symantec.com/PressCenter/ on Symantec's Website.

Brands and products referenced herein are the trademarks or registered trademarks of their respective holders. All prices noted are in US dollars and are valid only in the United States.