Vulnerability Description
NAI WebShield SMTP 4.5 and possibly 4.5 MR1a does not filter improperly MIME encoded email attachments, which could allow remote attackers to bypass filtering and possibly execute arbitrary code in email clients that process the invalid attachments.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Network Associates | Webshield Smtp | 4.5 |
References
- http://archives.neohapsis.com/archives/bugtraq/2001-11/0294.html
- http://www.iss.net/security_center/static/7637.php
- http://www.securityfocus.com/bid/3601
- http://archives.neohapsis.com/archives/bugtraq/2001-11/0294.html
- http://www.iss.net/security_center/static/7637.php
- http://www.securityfocus.com/bid/3601
FAQ
What is CVE-2001-1542?
CVE-2001-1542 is a vulnerability with a CVSS score of 7.5 (HIGH). NAI WebShield SMTP 4.5 and possibly 4.5 MR1a does not filter improperly MIME encoded email attachments, which could allow remote attackers to bypass filtering and possibly execute arbitrary code in em...
How severe is CVE-2001-1542?
CVE-2001-1542 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2001-1542?
Check the references section above for vendor advisories and patch information. Affected products include: Network Associates Webshield Smtp.