CVE-2004-1768

3 documents3 sources

Severity

5.0MEDIUM

EPSS

3.1%

top 13.19%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Symantec Brightmail Antispam

Timeline

PublishedDec 17

Latest updateMay 3

Description

The character converters in the Spamhunter and Language ID modules for Symantec Brightmail AntiSpam 6.0.1 before patch 132 allow remote attackers to cause a denial of service (crash) via messages with the ISO-8859-10 character set, which is not recognized by the converters.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

▶NVDsymantec/brightmail_antispam6.0.1

Patches

Patch: ftp.symantec.com ↗Patch: secunia.com ↗Patch: www.kb.cert.org ↗

🔴Vulnerability Details

GHSA

GHSA-8gp2-v2vm-xr7x: The character converters in the Spamhunter and Language ID modules for Symantec Brightmail AntiSpam 6↗2022-05-03

▶

CVEList

CVE-2004-1768: The character converters in the Spamhunter and Language ID modules for Symantec Brightmail AntiSpam 6↗2005-03-10

▶