Vulnerability Description
The character converters in the Spamhunter and Language ID modules for Symantec Brightmail AntiSpam 6.0.1 before patch 132 allow remote attackers to cause a denial of service (crash) via messages with the ISO-8859-10 character set, which is not recognized by the converters.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Symantec | Brightmail Antispam | 6.0.1 |
References
- ftp://ftp.symantec.com/public/english_us_canada/products/sba/sba_60x/updates/p13Patch
- http://secunia.com/advisories/13489PatchVendor Advisory
- http://www.kb.cert.org/vuls/id/697598PatchThird Party AdvisoryUS Government Resource
- http://www.osvdb.org/12459PatchVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/18530
- ftp://ftp.symantec.com/public/english_us_canada/products/sba/sba_60x/updates/p13Patch
- http://secunia.com/advisories/13489PatchVendor Advisory
- http://www.kb.cert.org/vuls/id/697598PatchThird Party AdvisoryUS Government Resource
- http://www.osvdb.org/12459PatchVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/18530
FAQ
What is CVE-2004-1768?
CVE-2004-1768 is a vulnerability with a CVSS score of 5.0 (MEDIUM). The character converters in the Spamhunter and Language ID modules for Symantec Brightmail AntiSpam 6.0.1 before patch 132 allow remote attackers to cause a denial of service (crash) via messages with...
How severe is CVE-2004-1768?
CVE-2004-1768 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2004-1768?
Check the references section above for vendor advisories and patch information. Affected products include: Symantec Brightmail Antispam.