Lucene search
HistoryOct 20, 2004 - 4:00 a.m.
CVE-2004-0162
cve-2004-0162
content security gateway
antivirus
bypass
mime encapsulation
rfc822 comment fields
remote attack
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
7.3 High
AI Score
Confidence
Low
0.008 Low
EPSS
Percentile
81.7%
Multiple content security gateway and antivirus products allow remote attackers to bypass content restrictions via MIME encapsulation that uses RFC822 comment fields, which may be interpreted as other fields by mail clients.
Affected configurations
Node
clearswiftmailsweeperMatch4.3.7
ORclearswiftmailsweeperMatch4.3.8
ORclearswiftmailsweeperMatch4.3.10
ORclearswiftmailsweeperMatch4.3.11
ORclearswiftmailsweeperMatch4.3.13
ORclearswiftmailsweeperMatch4.3.14
ORclearswiftmailsweeperMatch4.3.15
ORf-secureinternet_gatekeeperMatch6.3
ORf-secureinternet_gatekeeperMatch6.4
ORf-secureinternet_gatekeeperMatch6.31
ORf-secureinternet_gatekeeperMatch6.32
ORpaul_l_danielsripmimeMatch1.2.0
ORpaul_l_danielsripmimeMatch1.2.1
ORpaul_l_danielsripmimeMatch1.2.2
ORpaul_l_danielsripmimeMatch1.2.3
ORpaul_l_danielsripmimeMatch1.2.4
ORpaul_l_danielsripmimeMatch1.2.5
ORpaul_l_danielsripmimeMatch1.2.6
ORpaul_l_danielsripmimeMatch1.2.7
ORpaul_l_danielsripmimeMatch1.3.2.0
ORpaul_l_danielsripmimeMatch1.3.2.2
ORpaul_l_danielsripmimeMatch1.3.2.3
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
7.3 High
AI Score
Confidence
Low
0.008 Low
EPSS
Percentile
81.7%
Related for CVE-2004-0162