- Description
- NAI WebShield SMTP 4.5 and possibly 4.5 MR1a does not filter improperly MIME encoded email attachments, which could allow remote attackers to bypass filtering and possibly execute arbitrary code in email clients that process the invalid attachments.
- Source
- cve@mitre.org
- NVD status
- Modified
CVSS 2.0
- Type
- Primary
- Base score
- 7.5
- Impact score
- 6.4
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:P/I:P/A:P
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:network_associates:webshield_smtp:4.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "27DD72FC-3FEF-43BC-8A68-3299213151F5"
},
{
"criteria": "cpe:2.3:a:network_associates:webshield_smtp:4.5_mr1a:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "45CAE019-A5BE-451D-953C-CAA5DA703E70"
}
],
"operator": "OR"
}
]
}
]