Lucene search

[email protected]NVD:CVE-2001-1099

HistorySep 07, 2001 - 4:00 a.m.

CVE-2001-1099

2001-09-0704:00:00

CWE-434

[email protected]

web.nvd.nist.gov

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

6.6

Confidence

Low

EPSS

0.001

Percentile

44.0%

JSON

The default configuration of Norton AntiVirus for Microsoft Exchange 2000 2.x allows remote attackers to identify the recipient’s INBOX file path by sending an email with an attachment containing malicious content, which includes the path in the rejection notice.

Affected configurations

Nvd

Node

symantecnorton_antivirusMatch2.5

AND

microsoftexchange_serverMatch2000-

microsoftexchange_serverMatch2000sp1

VendorProductVersionCPE
symantecnorton_antivirus2.5cpe:2.3:a:symantec:norton_antivirus:2.5:*:*:*:*:*:*:*
microsoftexchange_server2000cpe:2.3:a:microsoft:exchange_server:2000:-:*:*:*:*:*:*
microsoftexchange_server2000cpe:2.3:a:microsoft:exchange_server:2000:sp1:*:*:*:*:*:*

Vendor	Product	Version	CPE
symantec	norton_antivirus	2.5	cpe:2.3:a:symantec:norton_antivirus:2.5:::::::*
microsoft	exchange_server	2000	cpe:2.3:a:microsoft:exchange_server:2000:-::::::
microsoft	exchange_server	2000	cpe:2.3:a:microsoft:exchange_server:2000:sp1::::::

References

www.securityfocus.com/archive/1/212724

www.securityfocus.com/archive/1/213762

www.securityfocus.com/bid/3305

exchange.xforce.ibmcloud.com/vulnerabilities/7093

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

6.6

Confidence

Low

EPSS

0.001

Percentile

44.0%

JSON

Related for NVD:CVE-2001-1099

cve1 cvelist1