COMMAND

    Unencrypted passwords in NAV for Email-GW

SYSTEMS AFFECTED

    Norton Antivirus for Email Gateways (NT)

PROBLEM

    Andre  Oppermann  found  following  vulnerability  in  the  Norton
    Antivirus for Email Gateways .INI-file is this:

        --- navieg.ini ---
        [UI]
        RootDir=C:\Progs\NAVIEG\ROOT
        TemplateDir=C:\Progs\NAVIEG\ROOT
        Default=index.htm
        HTTPServerAddress=xxx.xxx.xxx.xxx
        HTTPServerPort=80
        IPClients=xxx.xxx.xxx.xxx,xxx.xxx.xxx.xxx
        Password=testit
        --- navieg.ini ---

    As you can  see the password  is in clear  text in that  file with
    permission everyone.  No more comments on this...

SOLUTION

    Seems that Symantec has no encryption forced for passwords in this
    product.  The only way to protect yourself is to put good perms on
    INI file so that product can function and users can't see INI.