TUCoPS :: Security App Flaws :: nav01.htm

Norton Antivirus for Email Gateways password in clear text 
Vulnerability

    Unencrypted passwords in NAV for Email-GW

Affected

    Norton Antivirus for Email Gateways (NT)

Description

    Andre  Oppermann  found  following  vulnerability  in  the  Norton
    Antivirus for Email Gateways .INI-file is this:

        --- navieg.ini ---
        [UI]
        RootDir=C:\Progs\NAVIEG\ROOT
        TemplateDir=C:\Progs\NAVIEG\ROOT
        Default=index.htm
        HTTPServerAddress=xxx.xxx.xxx.xxx
        HTTPServerPort=80
        IPClients=xxx.xxx.xxx.xxx,xxx.xxx.xxx.xxx
        Password=testit
        --- navieg.ini ---

    As you can  see the password  is in clear  text in that  file with
    permission everyone.  No more comments on this...

Solution

    Seems that Symantec has no encryption forced for passwords in this
    product.  The only way to protect yourself is to put good perms on
    INI file so that product can function and users can't see INI.

TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2024 AOH