Norton Antivirus with Novell Client Autoprotection Disabling Vulnerability
BID:1533
Info
Norton Antivirus with Novell Client Autoprotection Disabling Vulnerability
| Bugtraq ID: | 1533 |
| Class: | Unknown |
| CVE: |
CVE-2000-0793 |
| Remote: | No |
| Local: | Yes |
| Published: | Jul 28 2000 12:00AM |
| Updated: | Jul 11 2009 02:56AM |
| Credit: | First posted to Bugtraq by grice <[email protected]> on July 28, 2000. |
| Vulnerable: |
Symantec Norton AntiVirus 5.0 Novell Client 3.1 |
| Not Vulnerable: | |
Discussion
Norton Antivirus with Novell Client Autoprotection Disabling Vulnerability
"Auto-Protection" is a feature that comes with Norton Antivirus that automatically scans all files downloaded, executed, etc. It normally remains active from system bootup to shutdown regardless of who logs in and out of the system. Unfortunately, under Windows 95/98 with Novell Network Client installed, Norton Antivirus and its auto-protect service is disabled after the first user to log in logs out. This leaves the system vulnerable to attacks which the auto-protect software may have prevented. It is not known where exactly this flaw lies, within Novell Client or within Norton products as this behaviour is exhibited in systems running other Norton products under Novell Client.
"Auto-Protection" is a feature that comes with Norton Antivirus that automatically scans all files downloaded, executed, etc. It normally remains active from system bootup to shutdown regardless of who logs in and out of the system. Unfortunately, under Windows 95/98 with Novell Network Client installed, Norton Antivirus and its auto-protect service is disabled after the first user to log in logs out. This leaves the system vulnerable to attacks which the auto-protect software may have prevented. It is not known where exactly this flaw lies, within Novell Client or within Norton products as this behaviour is exhibited in systems running other Norton products under Novell Client.
Exploit / POC
Norton Antivirus with Novell Client Autoprotection Disabling Vulnerability
Currently the SecurityFocus staff are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected].
Currently the SecurityFocus staff are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected].
Solution / Fix
Norton Antivirus with Novell Client Autoprotection Disabling Vulnerability
Solution:
Currently the SecurityFocus staff are not aware of any vendor supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected].
Solution:
Currently the SecurityFocus staff are not aware of any vendor supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected].
References
Norton Antivirus with Novell Client Autoprotection Disabling Vulnerability
References:
References:
- Novell Support (Novell)