Symantec Norton AntiVirus contains a flaw that may allow a remote attacker to bypass antivirus policies. The issue is triggered when changing the file name in the "Content-Type:" header to a different than the actual file type listed in the "Content-Disposition:" header, which would remain undetected by the incoming email protection feature. It is possible that the flaw may allow a remote attacker to execute arbitrary code, resulting in a loss of integrity.
Remote / Network Access
Loss of Integrity
Currently, there are no known upgrades, patches, or workarounds available to correct this issue.