Vulnerabilities > CVE-2002-1777 - Unspecified vulnerability in Symantec Norton Antivirus 2002

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

symantec

NVD

Published: 2002-12-31

Updated: 2024-04-11

Summary

NOTE: this issue has been disputed by the vendor. Symantec Norton AntiVirus (NAV) 2002 allows remote attackers to bypass e-mail scanning via a filename in the Content-Type field with an excluded extension such as .nch or .dbx, but a malicious extension in the Content-Disposition field, which is used by Outlook to obtain the file name. NOTE: the vendor has disputed this issue, acknowledging that the initial scan is bypassed, but Norton AntiVirus or the Office plug-in would detect the virus before it is executed

Vulnerable Configurations

Part	Description	Count
Application	Symantec Symantec Norton Antivirus 2002	1

References

http://online.securityfocus.com/archive/1/260271
http://online.securityfocus.com/archive/1/260678
http://www.securityfocus.com/bid/4246
https://exchange.xforce.ibmcloud.com/vulnerabilities/8392