CVE-2002-0637

Name of the Vulnerable Software and Affected Versions InterScan VirusWall version 3.52 build 1462

Description The issue allows remote attackers to bypass virus protection via e-mail messages with headers that violate RFC specifications. This can be achieved by including or missing space characters in unexpected places, such as in the Content-Type or Content-Transfer-Encoding headers, or by having no space before a boundary declaration, or by including a boundary= declaration with a space.

Recommendations For InterScan VirusWall version 3.52 build 1462, consider updating the software to a version that properly handles RFC specifications for e-mail headers to prevent virus protection bypass. As a temporary workaround, consider restricting the processing of e-mail messages with malformed headers to minimize the risk of exploitation.