Lucene search
MitreCVE-1999-1323HistorySep 12, 2001 - 4:00 a.m.
CVE-1999-1323
2001-09-1204:00:00
mitre
web.nvd.nist.gov
24
cve-1999-1323
norton antivirus
admin password
cleartext
risk
navieg
navmse
security.
CVSS2
4.6
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.2
Confidence
Low
EPSS
0
Percentile
9.5%
Norton AntiVirus for Internet Email Gateways (NAVIEG) 1.0.1.7 and earlier, and Norton AntiVirus for MS Exchange (NAVMSE) 1.5 and earlier, store the administrator password in cleartext in (1) the navieg.ini file for NAVIEG, and (2) the ModifyPassword registry key in NAVMSE.
Affected configurations
Node
symantecnorton_antivirusRange≤1.0.1.7internet_email_gateways
ORsymantecnorton_antivirusRange≤1.5exchange
| Vendor | Product | Version | CPE |
|---|---|---|---|
| symantec | norton_antivirus | * | cpe:2.3:a:symantec:norton_antivirus:*:*:internet_email_gateways:*:*:*:*:* |
| symantec | norton_antivirus | * | cpe:2.3:a:symantec:norton_antivirus:*:*:exchange:*:*:*:*:* |
CVSS2
4.6
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.2
Confidence
Low
EPSS
0
Percentile
9.5%
Related for CVE-1999-1323