PT-2001-1169 · Mcafee · Mcafee Webshield Smtp

Published

2001-01-09

Updated

2008-09-05

CVE-2000-1130

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions McAfee WebShield SMTP version 4.5

Description The issue allows remote attackers to bypass email content filtering rules. This is achieved by including Extended ASCII characters in the name of an attachment.

Recommendations For McAfee WebShield SMTP version 4.5, update the software to a version that includes a fix for this issue, or as a temporary workaround, consider implementing additional filtering rules to detect and block attachments with Extended ASCII characters in their names.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2000-1130

Affected Products

Mcafee Webshield Smtp

PT-2001-1169 · Mcafee · Mcafee Webshield Smtp

CVE-2000-1130

Related Identifiers

Affected Products

References · 3