Denial of Service Vulnerability in Symantec Brightmail AntiSpam
CVE-2005-4695

Currently unrated

Key Information:

Vendor: Symantec
Status: Brightmail Antispam
Vendor: CVE Published:; 31 December 2005

Summary

The Symantec Brightmail AntiSpam product versions 6.0 build 1 and 2 are susceptible to a denial of service attack due to improper handling of malformed MIME messages. Remote attackers can exploit this weakness by sending specially crafted messages that force the bmserver component to terminate, resulting in disruption of service. This vulnerability emphasizes the need for robust input validation and vulnerability management to prevent potential service outages.

References

http://www.securityfocus.com/bid/15087

vdb-entryx_refsource_BID

http://www.osvdb.org/19953

vdb-entryx_refsource_OSVDB

http://www.symantec.com/avcenter/security/Content/2005.10...

x_refsource_CONFIRM

Timeline

Vulnerability Reserved
Feb 1, 2006
Vulnerability published
Dec 31, 2005