PT-2017-9455 · Intel Security Mcafee · Intel Security Mcafee Email Gateway

Published

2017-03-14

Updated

2017-03-30

CVE-2016-8005

CVSS v3.1

6.5

Medium

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

Name of the Vulnerable Software and Affected Versions Intel Security McAfee Email Gateway (MEG) versions prior to 7.6.404h1128596

Description A file extension filtering issue allows attackers to bypass proper file name identification by scanning an email with a forged attached filename that uses a null byte within the filename extension.

Recommendations For versions prior to 7.6.404h1128596, update to version 7.6.404h1128596 or later to resolve the issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-264

Related Identifiers

CVE-2016-8005

Affected Products

Intel Security Mcafee Email Gateway

PT-2017-9455 · Intel Security Mcafee · Intel Security Mcafee Email Gateway

CVE-2016-8005

Weakness Enumeration

Related Identifiers

Affected Products

References · 3