Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-1542

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2001-1542
Last Modified 07 Mar 2011 09:07:32
Published 31 Dec 2001 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2001-1542

Summary

NAI WebShield SMTP 4.5 and possibly 4.5 MR1a does not filter improperly MIME encoded email attachments, which could allow remote attackers to bypass filtering and possibly execute arbitrary code in email clients that process the invalid attachments.

Vulnerable Systems

Application

  • Network Associates Webshield Smtp 4.5

  • Network Associates Webshield Smtp 4.5 Mr1a


References

BID - 3601

XF - webshield-smtp-mime-attachments(7637)

BUGTRAQ - 20011130 Re: NAI Webshield SMTP for WinNT MIME header vuln that allows BadTrans to pass]

BUGTRAQ - 20011129 NAI Webshield SMTP for WinNT MIME header vuln that allows BadTrans to pass]


Last Updated: 27 May 2016 10:36:42