CVE-2002-0485

HIGH

Norton Anti-Virus - Auth Bypass

Title source: llm

Description

Norton Anti-Virus (NAV) allows remote attackers to bypass content filtering via attachments whose Content-Type and Content-Disposition headers are mixed upper and lower case, which is ignored by some mail clients.

References (2)

[Mailing List] http://marc.info/?l=vuln-dev&m=101681724810317&w=2

[Mailing List] http://marc.info/?l=bugtraq&m=101684260510079&w=2

Scores

CVSS v3 7.5

EPSS 0.0048

EPSS Percentile 65.1%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact partial

Details

CWE

CWE-178

Status published

Products (1)

symantec/norton_antivirus

Published Aug 12, 2002

Tracked Since Feb 18, 2026