Lucene search

MitreCVE-2001-0692

HistoryMar 09, 2002 - 5:00 a.m.

CVE-2001-0692

2002-03-0905:00:00

mitre

web.nvd.nist.gov

watchguard firebox

smtp proxy

firewall bypass

base64 mime

cve-2001-0692

nvd

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

Confidence

Low

EPSS

0.017

Percentile

87.8%

JSON

SMTP proxy in WatchGuard Firebox (2500 and 4500) 4.5 and 4.6 allows a remote attacker to bypass firewall filtering via a base64 MIME encoded email attachment whose boundary name ends in two dashes.

Affected configurations

Nvd

Node

watchguardfirebox_2500Match4.5

watchguardfirebox_2500Match4.6

watchguardfirebox_4500Match4.5

watchguardfirebox_4500Match4.6

VendorProductVersionCPE
watchguardfirebox_25004.5cpe:2.3:h:watchguard:firebox_2500:4.5:*:*:*:*:*:*:*
watchguardfirebox_25004.6cpe:2.3:h:watchguard:firebox_2500:4.6:*:*:*:*:*:*:*
watchguardfirebox_45004.5cpe:2.3:h:watchguard:firebox_4500:4.5:*:*:*:*:*:*:*
watchguardfirebox_45004.6cpe:2.3:h:watchguard:firebox_4500:4.6:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
watchguard	firebox_2500	4.5	cpe:2.3:h:watchguard:firebox_2500:4.5:::::::*
watchguard	firebox_2500	4.6	cpe:2.3:h:watchguard:firebox_2500:4.6:::::::*
watchguard	firebox_4500	4.5	cpe:2.3:h:watchguard:firebox_4500:4.5:::::::*
watchguard	firebox_4500	4.6	cpe:2.3:h:watchguard:firebox_4500:4.6:::::::*

References

marc.info/?l=bugtraq&m=99379787421319&w=2

www.securityfocus.com/archive/1/189783

www.securityfocus.com/bid/2855

exchange.xforce.ibmcloud.com/vulnerabilities/6682

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

Confidence

Low

EPSS

0.017

Percentile

87.8%

JSON

Related for CVE-2001-0692