A new security vulnerability has been found within Symantec and Norton Anti-virus core code that potentially allows an attacker to take full control over the target machine.
What is different about this particularly vulnerability is that it does not require the end user to perform any interaction with the infected file but rather the exploit is automatically executed when the antivirus engine loads the file into memory for scanning, this makes the vulnerability particularly dangerous.
For clients that have Symantec endpoint installed and managed by us you will have been contacted via email and our engineers are in the process of patching all installations; however if you have installed Symantec yourself or use it locally it is imperative you take action immediately to install the latest updates.
For further information, please see the following advisory
If you have any concerns or are not sure if your services may be affected by this vulnerability please contact our support team who will be happy to advise.