Mac OS X affected by JS.Exception.Exploit despite Symantec's description

We have received several notes from readers who are identifying and isolating a possible security exploit - JS.Exception.Exploit - with Symantec's newly shipping Norton AntiVirus 9.0.

JS.Exception.Exploit, according to Symantec, is a detection for an exploit that allows Java applets to perform various actions on your system if you are using an older or unpatched version of Microsoft Internet Explorer. Their description also states:

"In many cases, JS.Exception.Exploit may perform simple actions such as changing your Internet Explorer home page. (This is one of the most common uses of this exploit.) It has been reported, but not confirmed, that some adware programs use JS.Exception.Exploit to do this. As a result, your Symantec antivirus program may detect JS.Exception.Exploit when the adware program displays a pop-up ad that uses the exploit."

However, Symantec also claims that only Windows 95, Windows 98, Windows NT, Windows 2000, Windows XP, and Windows Me systems are affected.

If this message turns up on your Mac after running Norton AntiVirus 9.0, it is likely that some add-on package has attempted to modify some portion of your preferences. Delete any "adware" or "spyware" (Aladdin Systems' new Internet Cleanup tool can help), run AntiVirus again, and send us your results.

Resources