CVE-2005-2298 — MEDIUM (5.0)

Q: How severe is CVE-2005-2298?

CVE-2005-2298 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2005-2298?

Check the references section above for vendor advisories and patch information. Affected products include: Softwin Bitdefender Engine.

Vulnerability Description

BitDefender Engine 1.6.1 and earlier does not properly scan all attachments, which allows remote attackers to bypass virus scanning via begin and end commands in the body of the e-mail, which BitDefender treats as a uuencoded attachment and stops scanning afterwards.

CVSS Score

5.0

MEDIUM

AV:N/AC:L/Au:N/C:N/I:P/A:N

Confidentiality

NONE

Integrity

PARTIAL

Availability

NONE

Affected Products

Vendor	Product	Versions
Softwin	Bitdefender Engine	<= 1.6.1

References

FAQ

What is CVE-2005-2298?

CVE-2005-2298 is a vulnerability with a CVSS score of 5.0 (MEDIUM). BitDefender Engine 1.6.1 and earlier does not properly scan all attachments, which allows remote attackers to bypass virus scanning via begin and end commands in the body of the e-mail, which BitDefen...

How severe is CVE-2005-2298?

CVE-2005-2298 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2005-2298?

Check the references section above for vendor advisories and patch information. Affected products include: Softwin Bitdefender Engine.