A Google Project Zero researcher recently found remote code execution vulnerabilities and a flaw in the core scanning engine of Norton products. The flaw has been described as “as bad as it can possibly get”, with users being vulnerable to exploitation with no interaction on their end. According to the researchers, users of the software could be exposed by simply receiving an email. As of 5/17/16, a patch was released in order to fix the engine flaw. Read more at TechTarget.
Home Google Project Zero Finds Vulnerability in Symantec Softwares