PT-2001-2627 · Nai · Nai Webshield Smtp

Published

2001-12-31

Updated

2011-03-08

CVE-2001-1542

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions NAI WebShield SMTP version 4.5 NAI WebShield SMTP version 4.5 MR1a

Description The issue allows remote attackers to bypass filtering and possibly execute arbitrary code in email clients by not properly filtering MIME encoded email attachments.

Recommendations For version 4.5, update the filtering rules to properly handle MIME encoded email attachments. For version 4.5 MR1a, update the filtering rules to properly handle MIME encoded email attachments. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2001-1542

Affected Products

Nai Webshield Smtp

PT-2001-2627 · Nai · Nai Webshield Smtp

CVE-2001-1542

Related Identifiers

Affected Products

References · 4