7.5
CVE-2002-1777
- EPSS 2.57%
- Veröffentlicht 31.12.2002 05:00:00
- Zuletzt bearbeitet 16.06.2026 21:59:57
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
NOTE: this issue has been disputed by the vendor. Symantec Norton AntiVirus (NAV) 2002 allows remote attackers to bypass e-mail scanning via a filename in the Content-Type field with an excluded extension such as .nch or .dbx, but a malicious extension in the Content-Disposition field, which is used by Outlook to obtain the file name. NOTE: the vendor has disputed this issue, acknowledging that the initial scan is bypassed, but Norton AntiVirus or the Office plug-in would detect the virus before it is executed
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Symantec ≫ Norton Antivirus Version2002
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 2.57% | 0.832 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
http://online.securityfocus.com/archive/1/260271
http://online.securityfocus.com/archive/1/260678
http://www.securityfocus.com/bid/4246
https://exchange.xforce.ibmcloud.com/vulnerabilities/8392