Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-2034

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2002-2034
Last Modified 05 Sep 2008 04:32:09
Published 31 Dec 2002 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2002-2034

Summary

The Email Sanitizer before 1.133 for Procmail allows remote attackers to bypass the mail filter and execute arbitrary code via crafted recursive multipart MIME attachments.

Vulnerable Systems

Application

  • John Hardin Procmail Email Sanitizer 1.131

  • John Hardin Procmail Email Sanitizer 1.132


References

BID - 3820

XF - pes-mime-bypass-filter(7847)

CONFIRM - http://www.impsec.org/email-tools/sanitizer-changelog.html


Last Updated: 27 May 2016 10:37:35