Symantec has updated their advisory (http://www.symantec.com/avcenter/security/Content/2006.05.25.html)
They confirm that the following versions are affected and patches are available:
Symantec Client Security-
3.0 Builds 126.96.36.1990 and 188.8.131.520
3.1 Builds 184.108.40.2064 and 220.127.116.110
Symantec Antivirus Corporate Edition-
10.0 Builds 10.0.2.2010 and 10.0.2.2020
10.1 Builds 10.1.0.394 and 10.1.0.400
Some have reported that the patching process is not trivial, and can be difficult to roll out in some environments.
At this time, there have been no reports of proof-of-concept-code or exploit code other than that held privately by eEye.
We have not received any reports of exploitation in the wild.
May 29th 2006
1 decade ago