Hot Downloads

Welcome, Guest
Username: Password: Remember me

TOPIC: Symantec Mail Security Update Flaw

Symantec Mail Security Update Flaw 9 years 4 months ago #27198

  • ZiPPy
  • ZiPPy's Avatar
  • Offline
  • Expert Member
  • Posts: 500
  • Karma: 0
I wanted to bring up an interesting find regarding Symantec security products, primarily Mail Security for Microsoft Exchange.

I have a Symantec Mail Security for Microsoft Exchange (Ver. 5.0) running on an Exchange Server. The license expired back in late 2005. Now rather then purchasing a new license I decided to do a manual update of the virus definitions.

I was able to go to the following website:

And download the necessary definitions for my product. The default folder where the virus definitions should go is C:\Program Files\Common Files\Symantec Shared\VirusDefs\Incoming\
The location listed above only works if the license is valid. So, the work around was to place the latest download virus definitions in: C:\Program Files\Common Files\Symantec Shared\definitions\AntiVirus\VirusDefs

In doing so, am I truly installing all the virus definitions? If the license is expired how can this work? If I got into the Symantec Mail Security it clearly indicates the definitions have been updated. Is this a flaw in the Symantec product?

The only downfall is that you don't get automatic daily virus definitions.


ZiPPy [/b]
The administrator has disabled public write access.

Re: Symantec Mail Security Update Flaw 9 years 4 months ago #27201

  • S0lo
  • S0lo's Avatar
  • Offline
  • Moderator
  • Posts: 1577
  • Thank you received: 7
  • Karma: 3
Hi Zippy,

I've used Symantec AV for a long while before I quit using it. Not going into legal issues here, but I've seen and read about such easy cracks for it, but may be not as easy as this one!! The easiest I knew about involves replacing a single file in one of the LiveUpdate folders with a bogus file having the expiry date set to something like 2999!!

Since the product itself says the definitions have been updated, I think it really is. I'm not sure off-course. When I google for "C:\Program Files\Common Files\Symantec Shared\definitions\AntiVirus\VirusDefs" (with double quotes) nothing appears except for one unrelated topic and THIS very thread. Who knows, may be your the first to notice this 8)
Studying CCNP...

Ammar Muqaddas
Forum Moderator
The administrator has disabled public write access.

Re: Symantec Mail Security Update Flaw 9 years 3 months ago #27420

  • annasaheb
  • annasaheb's Avatar
  • Offline
  • New Member
  • Posts: 1
  • Karma: 0
Hi Zippy,

the licence is related to product/support licence. I belive if you have symantec antivirus running on the exchange server then the SMS for exchange will automatically take new virus defs if the antivirus configured to update from AV server.

The administrator has disabled public write access.
Time to create page: 0.100 seconds


Cisco Routers

  • SSL WebVPN
  • Securing Routers
  • Policy Based Routing
  • Router on-a-Stick

VPN Security

  • Understand DMVPN
  • GRE/IPSec Configuration
  • Site-to-Site IPSec VPN
  • IPSec Modes

Cisco Help

  • VPN Client Windows 8
  • VPN Client Windows 7
  • CCP Display Problem
  • Cisco Support App.

Windows 2012

  • New Features
  • Licensing
  • Hyper-V / VDI
  • Install Hyper-V


  • File Permissions
  • Webmin
  • Groups - Users
  • Samba Setup