PT-2009-3989 · Mcafee+1 · Mcafee Groupshield+2

Published

2009-05-05

Updated

2017-08-17

CVE-2009-1491

CVSS v2.0

9.3

High

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions: McAfee GroupShield for Microsoft Exchange version on Exchange Server 2000

Description: The issue allows remote attackers to bypass virus detection by sending a crafted message. This is demonstrated by a message with an X-Testing header and no message body, which is not scanned for malicious content.

Recommendations: For McAfee GroupShield for Microsoft Exchange on Exchange Server 2000, consider configuring the product to scan X- headers for malicious content as a temporary workaround until a patch is available. Restrict access to the email system to minimize the risk of exploitation.

Exploit

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

CVE-2009-1491

Affected Products

Exchange 2000 Server

Mcafee Groupshield

Exchange Server

PT-2009-3989 · Mcafee+1 · Mcafee Groupshield+2

CVE-2009-1491

Weakness Enumeration

Related Identifiers

Affected Products

References · 4