Vulnerabilities > CVE-2002-0485 - Improper Handling of Case Sensitivity vulnerability in Symantec Norton Antivirus

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

HIGH

Availability impact

NONE

network

low complexity

symantec

CWE-178

NVD

Published: 2002-08-12

Updated: 2024-02-02

Summary

Norton Anti-Virus (NAV) allows remote attackers to bypass content filtering via attachments whose Content-Type and Content-Disposition headers are mixed upper and lower case, which is ignored by some mail clients.

Vulnerable Configurations

Part	Description	Count
Application	Symantec Symantec Norton Antivirus *	1

Common Weakness Enumeration (CWE)

CWE-178 - Improper Handling of Case Sensitivity

References

http://marc.info/?l=bugtraq&m=101684260510079&w=2
http://marc.info/?l=vuln-dev&m=101681724810317&w=2