CVE-2002-1121

Name of the Vulnerable Software and Affected Versions: GFI MailSecurity for Exchange/SMTP versions prior to 7.2 InterScan VirusWall versions prior to 3.52 build 1494 MIMEDefang versions prior to 2.21

Description: The issue concerns SMTP content filter engines that do not detect fragmented emails as defined in RFC2046, allowing remote attackers to bypass content filtering, including virus checking, via fragmented emails of the message/partial content type. This could potentially affect a significant number of devices worldwide, although the exact number is not specified.

Recommendations: For GFI MailSecurity for Exchange/SMTP versions prior to 7.2, update to version 7.2 or later to resolve the issue. For InterScan VirusWall versions prior to 3.52 build 1494, update to version 3.52 build 1494 or later to resolve the issue. For MIMEDefang versions prior to 2.21, update to version 2.21 or later to resolve the issue.