cbcvebase.
CVE-2002-1121
published 2002-09-24

CVE-2002-1121: SMTP content filter engines, including (1) GFI MailSecurity for Exchange/SMTP before 7.2, (2) InterScan VirusWall before 3.52 build 1494, (3) the default…

PriorityP431high7.5CVSS 2.0
AVNACLAuNCPIPAP
EPSS
6.67%
93.1th percentile
SMTP content filter engines, including (1) GFI MailSecurity for Exchange/SMTP before 7.2, (2) InterScan VirusWall before 3.52 build 1494, (3) the default configuration of MIMEDefang before 2.21, and possibly other products, do not detect fragmented emails as defined in RFC2046 ("Message Fragmentation and Reassembly") and supported in such products as Outlook Express, which allows remote attackers to bypass content filtering, including virus checking, via fragmented emails of the message/partial content type.

Affected

11 ranges
VendorProductVersion rangeFixed in
gfimailsecurity
network_associateswebshield_smtp
network_associateswebshield_smtp
network_associateswebshield_smtp
network_associateswebshield_smtp
roaring_penguincanit
roaring_penguinmimedefang
roaring_penguinmimedefang
trend_microinterscan_viruswall
trend_microinterscan_viruswall
trend_microinterscan_viruswall
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.