|
Fragmented email may pass AntiVirus gateways
|
|
Secunia Advisory:
|
SA7103
|
|
|
Release Date:
|
2002-09-12
|
|
Last Update:
|
2002-09-13
|
|
Popularity:
|
8,414 views
|
|
|
Critical:
|
Less critical
|
|
Impact:
|
Security Bypass
|
|
Where:
|
From remote
|
|
Solution Status:
|
Partial Fix
|
|
| Software: | GFI MailSecurity for Exchange/SMTP 7.x
McAfee WebShield SMTP 4.x
Microsoft Outlook 2000
Microsoft Outlook 97
Microsoft Outlook 98
Microsoft Outlook Express 5
Microsoft Outlook Express 5.5
Microsoft Outlook Express 6
Trend Micro InterScan VirusWall 3.x
|
|
|
Secunia CVSS-2 Score:
|
Available in Secunia business solutions 
|
|
|
Subscribe:
|
Instant alerts on relevant vulnerabilities
|
|
| Advisory Content (Page 1 of 3) | [ 1 ] [ 2 ] [ 3 ] | |
|
Description:
Using Outlook and Outlook Express, it is possible to send and receive message/partial emails, this means that an email can be split into multiple parts when sent and reassembled when received again.
Many antivirus gateways fails to recognise this message/partial format, due to the fact that they fail to reassemble and scan the messages, malware may pass the antivirus gateway.
Multiple vendors have been informed, as well as CERT. We expect to see updates from all affected vendors soon. It is not yet known if more vendors are affected.
We will update this advisory when we know more. It will not be sent again unless new significant information becomes available.
Change Page:
[ 1 ] [ 2 ] [ 3 ]
|
|
|
Track this Secunia Advisory
|
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released.
Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.
|
|
|
About this Secunia Advisory
|
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
|
