CVE-2002-1777

Name of the Vulnerable Software and Affected Versions Symantec Norton AntiVirus (NAV) version 2002

Description The issue allows remote attackers to bypass e-mail scanning via a filename in the Content-Type field with an excluded extension, but a malicious extension in the Content-Disposition field, which is used by Outlook to obtain the file name. The vendor has disputed this issue, acknowledging that the initial scan is bypassed, but Symantec Norton AntiVirus or the Office plug-in would detect the virus before it is executed.

Recommendations For Symantec Norton AntiVirus (NAV) version 2002, consider restricting the use of excluded extensions in the Content-Type field to minimize the risk of exploitation. Additionally, ensure that the Office plug-in is enabled to detect viruses before they are executed. At the moment, there is no information about a newer version that contains a fix for this vulnerability.