Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-4242

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2007-4242
Last Modified 05 Sep 2008 05:27:45
Published 08 Aug 2007 06:17:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2007-4242

Summary

The pop3 Proxy in Astaro Security Gateway (ASG) 7 does not perform virus scanning of attachments that exceed the maximum attachment size, and passes these attachments, which allows remote attackers to bypass this scanning via a large attachment.

Vulnerable Systems


References

XF - astaro-pop3-security-bypass(35827)

BUGTRAQ - 20070805 DOS issue in Astaro Version 7 packet filter reporting, POSSIBLE security issue in POP3 proxy

SECTRACK - 1018543

BUGTRAQ - 20070819 Astaro DOS and POP3 bypass issues partially resolved

MISC - http://www.hescominsoon.com/archives/773

SREASON - 2981


Last Updated: 27 May 2016 10:45:48