VULHUB ™

An issue has been discovered which involves Symantec Norton AntiVirus 2002 incoming email scanning protection feature. It is possible to bypass this protection feature, if an email message is crafted in such a way that NULL characters are inserted into the MIME type before the virus type is defined. Upon receiving an email message crafted as such, Norton AntiVirus 2002 fails to detect the virus. As a result email messages with malicious content (ie: viruses, trojans etc.) will go undetected and could possibly run on the recipients system.

An issue has been discovered which involves Symantec Norton AntiVirus 2002 incoming email scanning protection feature. It is possible to bypass this protection feature, if an email message is crafted in such a way that NULL characters are inserted into the MIME type before the virus type is defined. Upon receiving an email message crafted as such, Norton AntiVirus 2002 fails to detect the virus. As a result email messages with malicious content (ie: viruses, trojans etc.) will go undetected and could possibly run on the recipients system.