Lucene search

[email protected]CVE-2000-0478

HistoryJun 14, 2000 - 4:00 a.m.

CVE-2000-0478

2000-06-1404:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

norton antivirus

exchange

navexchange

fail-open

cve-2000-0478

7.3 High

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

0.003 Low

EPSS

Percentile

67.9%

JSON

In some cases, Norton Antivirus for Exchange (NavExchange) enters a “fail-open” state which allows viruses to pass through the server.

CPENameOperatorVersion
symantec:norton_antivirussymantec norton antiviruseq2.0
symantec:norton_antivirussymantec norton antiviruseq1.5

CPE	Name	Operator	Version
symantec:norton_antivirus	symantec norton antivirus	eq	2.0
symantec:norton_antivirus	symantec norton antivirus	eq	1.5

References

archives.neohapsis.com/archives/bugtraq/2000-06/0136.html

www.osvdb.org/6266

www.securityfocus.com/bid/1351

exchange.xforce.ibmcloud.com/vulnerabilities/4709

7.3 High

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

0.003 Low

EPSS

Percentile

67.9%

JSON