The company says the source code for the program, which provides users remote access to their personal computers, was stolen by the hacktivist group Anonymous, PC Magazine reported Thursday.
"Upon investigation of the claims made by Anonymous regarding source code disclosure, Symantec believes that the disclosure was the result of a theft of source code that occurred in 2006," Symantec said in a statement.
"Symantec recommends disabling the product until Symantec releases a final set of software updates that resolve currently known vulnerability risks."
Malicious users with access to the source code could use it to create computer attacks that could expose authentication and session information, Symantec said.
Martin Bashir resigns from MSNBC over Sarah Palin comments
Toddler uninjured after being knocked over by Obama family dog