PUBLISHED DATE: December 22, 1999CVE-2000-0119:
Default Configuration Vulnerability

Description

The default configurations for McAfee Virus Scan and Norton Anti-Virus virus checkers do not check files in the RECYCLED folder that is used by the Windows Recycle Bin utility, which allows attackers to store malicious code without detection.

Products

• McAfee VirusScan
• McAfee VirusScan
• McAfee VirusScan 10.0.27
• McAfee VirusScan 4.0.3
• McAfee VirusScan 4.4
• McAfee VirusScan 4.5.1
• McAfee VirusScan 4.5
• McAfee VirusScan 7.0
• McAfee VirusScan 8.0.0
• Symantec Norton AntiVirus
• Symantec Norton Antivirus -
• Symantec Norton Antivirus 1.0
• Symantec AntiVirus 10.0.0.359
• Symantec Norton Antivirus 10.0.0
• Symantec AntiVirus 10.0.1.1000
• Symantec AntiVirus 10.0.1.1007
• Symantec AntiVirus 10.0.1.1008
• Symantec Norton Antivirus 10.0.1
• Symantec AntiVirus 10.0.2.2000
• Symantec AntiVirus 10.0.2.2001
• Symantec AntiVirus 10.0.2.2002
• Symantec AntiVirus 10.0.2.2010
• Symantec AntiVirus 10.0.2.2011
• Symantec AntiVirus 10.0.2.2020
• Symantec AntiVirus 10.0.2.2021
• Symantec Norton Antivirus 10.0
• Symantec Norton Antivirus 10.1
• Symantec Norton Antivirus 2.0
• Symantec Norton Antivirus 2.18 Build 83 Exchange Edition
• Symantec Norton Antivirus 2.1
• Symantec Norton Antivirus 2.5
• Symantec Norton Antivirus 2004 Windows Edition
• Symantec Norton Antivirus 5.0
• Symantec Symantec AntiVirus 8.0.1.501
• Symantec Symantec AntiVirus 8.0.1
• Symantec Symantec AntiVirus 8.01 build8.01.434
• Symantec Norton Antivirus 8.01.434 Corporate Edition
• Symantec Symantec AntiVirus 8.01 build8.01.437
• Symantec Norton Antivirus 8.01.437 Corporate Edition
• Symantec Symantec AntiVirus 8.01 build8.01.446
• Symantec Norton Antivirus 8.01.446 Corporate Edition
• Symantec Symantec AntiVirus 8.01 build8.01.457
• Symantec Norton Antivirus 8.01.457 Corporate Edition
• Symantec Symantec AntiVirus 8.01 build8.01.460
• Symantec Norton Antivirus 8.01.460 Corporate Edition
• Symantec Symantec AntiVirus 8.01 build8.01.464
• Symantec Norton Antivirus 8.01.464 Corporate Edition
• Symantec Symantec AntiVirus 8.01 build8.01.471
• Symantec Norton Antivirus 8.01.471 Corporate Edition
• Symantec Symantec AntiVirus 8.1.0.825a
• Symantec Symantec AntiVirus 8.1.1 build8.1.1.319
• Symantec Norton Antivirus 8.1.1.319 Corporate Edition
• Symantec Symantec AntiVirus 8.1.1 build8.1.1.323
• Symantec Norton Antivirus 8.1.1.323 Corporate Edition
• Symantec Symantec AntiVirus 8.1.1 build8.1.1.329
• Symantec Norton Antivirus 8.1.1.329 Corporate Edition
• Symantec Symantec AntiVirus 8.1.1.366
• Symantec Symantec AntiVirus 8.1.1.377
• Symantec Symantec AntiVirus 8.1.1
• Symantec Norton Antivirus 8.1.1 Build8.1.1.314a Corporate Edition
• Symantec Symantec AntiVirus 8.1
• Symantec AntiVirus 9.0.0.338
• Symantec Norton Antivirus 9.0.0
• Symantec AntiVirus 9.0.1.1.1000
• Symantec Symantec AntiVirus 9.0.1.1000
• Symantec Norton Antivirus 9.0.1
• Symantec AntiVirus 9.0.2.1000
• Symantec Norton Antivirus 9.0.2
• Symantec AntiVirus 9.0.3.1000
• Symantec Norton Antivirus 9.0.3
• Symantec AntiVirus 9.0.4
• Symantec AntiVirus 9.0.4 MR4_build_1000
• Symantec AntiVirus 9.0.4 MR4_build_1000 Corporate Edition
• Symantec AntiVirus 9.0.5.1100
• Symantec AntiVirus 9.0.5
• Symantec AntiVirus 9.0.6.1000
• Symantec Norton Antivirus 9.0
• Symantec Norton Antivirus 9.0 Macintosh Corporate Edition

Questions to Ask Vendors

1. Can you confirm whether your systems are affected by CVE-2000-0119, and if so, what steps are you currently taking to mitigate this vulnerability?
2. What is your estimated timeline for fully resolving CVE-2000-0119 in your products or services, and how will you communicate updates on this issue to us as your customer?

Recommended Actions

• Check out the advisory links provided below.

References

• https://nvd.nist.gov/vuln/detail/CVE-2000-0119