CVE-2009-1240

Currently unrated

Key Information:

Vendor: IBM
Status: Proventia Network Mail Security System Virtual Appliance; Network Multi-function Security; Proventia Network Mail Security System; Proventia Desktop Endpoint Security
Vendor: CVE Published:; 3 April 2009

Summary

Unspecified vulnerability in the IBM Proventia engine 4.9.0.0.44 20081231, as used in IBM Proventia Network Mail Security System, Network Mail Security System Virtual Appliance, Desktop Endpoint Security, Network Multi-Function Security (MFS), and possibly other products, allows remote attackers to bypass detection of malware via a modified RAR archive.

References

http://www.securityfocus.com/archive/1/504995/100/0/threaded

mailing-listx_refsource_BUGTRAQ

http://blog.zoller.lu/2009/04/ibm-proventia-evasion-limit...

x_refsource_MISC

http://iss.custhelp.com/cgi-bin/iss.cfg/php/enduser/std_a...

x_refsource_MISC

Timeline

Vulnerability published
Apr 3, 2009
Vulnerability Reserved
Apr 3, 2009