Threat Level: green Handler on Duty: Johannes Ullrich

SANS ISC: InfoSec Handlers Diary Blog - Internet Storm Center Diary 2010-01-28 InfoSec Handlers Diary Blog


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

Symantec generating a False Positive on Flash Player installer

Published: 2010-01-28
Last Updated: 2010-01-28 19:47:09 UTC
by Joel Esler (Version: 2)
7 comment(s)

If you are running Symantec antivirus, and trying to install Flash, and the Installer is being flagged as a Trojan Horse, now you know why.  Seems there might be a false positive in Symantec's host based detection, flagging the Adobe Flash Installer as a Trojan Horse.

This isn't a big slight, this happens from time to time, with the thousands and thousands of different types of detection that is done with an antivirus tool, it's actually fairly impressive that this type of thing doesn't happen more often.  But it's happened before, and it will happen again.  (Remember the Excel file fiasco that McAfee's AV caused?)

Symantec is encouraging people that are affected to call Symantec support.  I am sure this will be resolved very soon.

Seems that the affected Revision is: 2010-01-27 rev 049.

I'll update this post when it's corrected.

UPDATE: This has been fixed: http://www.symantec.com/connect/forums/flash-player-false-positive#comment-3520451

-- Joel Esler | http://blog.joelesler.net | http://twitter.com/joelesler

Keywords:
7 comment(s)

Cisco Security Advisory: Multiple Vulnerabilities in Cisco Unified MeetingPlace

Published: 2010-01-28
Last Updated: 2010-01-28 01:28:08 UTC
by Joel Esler (Version: 1)
0 comment(s)

Just wanted to call attention these patches released today: http://www.cisco.com/en/US/products/products_security_advisory09186a0080b1490b.shtml

This affects Cisco Unified MeetingPlace versions 5, 6, and 7.

If you use this software, please start patching.

 

-- Joel Esler | http://blog.joelesler.net | http://twitter.com/joelesler

Keywords:
0 comment(s)
Diary Archives