1. Home
  2. CVE Database
  3. CVE-2009-1240
HIGH · 10.0

CVE-2009-1240

Unspecified vulnerability in the IBM Proventia engine 4.9.0.0.44 20081231, as used in IBM Proventia Network Mail Security System, Network Mail Security System Virtual Appliance, Desktop Endpoint Secur...

Vulnerability Description

Unspecified vulnerability in the IBM Proventia engine 4.9.0.0.44 20081231, as used in IBM Proventia Network Mail Security System, Network Mail Security System Virtual Appliance, Desktop Endpoint Security, Network Multi-Function Security (MFS), and possibly other products, allows remote attackers to bypass detection of malware via a modified RAR archive.

CVSS Score

10.0

HIGH

AV:N/AC:L/Au:N/C:C/I:C/A:C
Confidentiality
COMPLETE
Integrity
COMPLETE
Availability
COMPLETE

Affected Products

VendorProductVersions
IbmProventia Desktop Endpoint SecurityAll versions
IbmProventia Network Mail Security SystemAll versions
IbmNetwork Multi-Function SecurityAll versions
IbmProventia Network Mail Security System Virtual ApplianceAll versions

References

FAQ

What is CVE-2009-1240?

CVE-2009-1240 is a vulnerability with a CVSS score of 10.0 (HIGH). Unspecified vulnerability in the IBM Proventia engine 4.9.0.0.44 20081231, as used in IBM Proventia Network Mail Security System, Network Mail Security System Virtual Appliance, Desktop Endpoint Secur...

How severe is CVE-2009-1240?

CVE-2009-1240 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2009-1240?

Check the references section above for vendor advisories and patch information. Affected products include: Ibm Proventia Desktop Endpoint Security, Ibm Proventia Network Mail Security System, Ibm Network Multi-Function Security, Ibm Proventia Network Mail Security System Virtual Appliance.