CVE-2004-1768

2005-03-1005:00:00

mitre

www.cve.org

AI Score

6.7

Confidence

High

EPSS

0.002

Percentile

55.0%

JSON

The character converters in the Spamhunter and Language ID modules for Symantec Brightmail AntiSpam 6.0.1 before patch 132 allow remote attackers to cause a denial of service (crash) via messages with the ISO-8859-10 character set, which is not recognized by the converters.

References

ftp://ftp.symantec.com/public/english_us_canada/products/sba/sba_60x/updates/p132_notes.htm

secunia.com/advisories/13489

www.kb.cert.org/vuls/id/697598

www.osvdb.org/12459

exchange.xforce.ibmcloud.com/vulnerabilities/18530