CVE-2004-0161 — Mailsweeper vulnerability

3 documents3 sources

Severity

7.5HIGHNVD

EPSS

0.3%

top 43.12%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Clearswift Mailsweeper F-secure Internet Gatekeeper Paul L Daniels Ripmime

Timeline

PublishedOct 20

Latest updateApr 29

Description

Multiple content security gateway and antivirus products allow remote attackers to bypass content restrictions via MIME messages that use RFC2231 encoding, which may be interpreted differently by mail clients.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages3 packages

▶NVDclearswift/mailsweeper7 versions+6

▶NVDpaul_l_daniels/ripmime11 versions+10

▶NVDf-secure/internet_gatekeeper4 versions+3

🔴Vulnerability Details

GHSA

GHSA-9v2m-h53x-2f6v: Multiple content security gateway and antivirus products allow remote attackers to bypass content restrictions via MIME messages that use RFC2231 enco↗2022-04-29

▶

CVEList

CVE-2004-0161: Multiple content security gateway and antivirus products allow remote attackers to bypass content restrictions via MIME messages that use RFC2231 enco↗2004-09-24

▶