CVE-2000-0119

McAfee Virus Scan/Norton Anti-Virus - Info Disclosure

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2000-0119. PoCs published by Neil Bortnak.

AI-analyzed exploit summary This is a technical writeup describing a vulnerability in McAfee VirusScan 4.0 and Symantec Norton AntiVirus 2000 where the Recycle Bin folder is excluded from virus scans, allowing malicious files to evade detection. The exploit involves placing a decoy executable on the desktop and a file with an EICAR virus signature in the Recycled folder, bypassing active detection via XOR obfuscation.

Description

The default configurations for McAfee Virus Scan and Norton Anti-Virus virus checkers do not check files in the RECYCLED folder that is used by the Windows Recycle Bin utility, which allows attackers to store malicious code without detection.

Exploits (1)

exploitdb WRITEUP VERIFIED
by Neil Bortnak · textlocalwindows
https://www.exploit-db.com/exploits/19733

This is a technical writeup describing a vulnerability in McAfee VirusScan 4.0 and Symantec Norton AntiVirus 2000 where the Recycle Bin folder is excluded from virus scans, allowing malicious files to evade detection. The exploit involves placing a decoy executable on the desktop and a file with an EICAR virus signature in the Recycled folder, bypassing active detection via XOR obfuscation.

Classification
Writeup 90%
Attack Type
Other
Complexity
Trivial
Reliability
Reliable
Target: McAfee VirusScan 4.0, Symantec Norton AntiVirus 2000
No auth needed
Prerequisites: Access to the target system's file system · Ability to place files in the Recycled folder
mistral-large-3 · analyzed Feb 18, 2026 Full analysis →

References (1)

Core 1
Core References
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=94936267131123&w=2

Scores

EPSS 0.0123
EPSS Percentile 65.2%

Details

Status published
Products (2)
mcafee/virusscan
symantec/norton_antivirus
Published Dec 22, 1999
Tracked Since Feb 18, 2026