CVE-2009-1240
Published Apr 3, 2009
Last updated 6 years ago
Overview
- Description
- Unspecified vulnerability in the IBM Proventia engine 4.9.0.0.44 20081231, as used in IBM Proventia Network Mail Security System, Network Mail Security System Virtual Appliance, Desktop Endpoint Security, Network Multi-Function Security (MFS), and possibly other products, allows remote attackers to bypass detection of malware via a modified RAR archive.
- Source
- cve@mitre.org
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 10
- Impact score
- 10
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:C/I:C/A:C
Weaknesses
- nvd@nist.gov
- NVD-CWE-noinfo
Evaluator
- Comment
- Per: http://iss.custhelp.com/cgi-bin/iss.cfg/php/enduser/std_adp.php?p_faqid=5417 Although the Virus Prevention System technology was, at one time, incorporated into the IBM Proventia Network MFS and the Proventia Network Mail appliances, this capability was removed in Jan 2008. For this reason, this vulnerability does not apply to these product lines. The Virus Prevention System technology is currently incorporated into Proventia Desktop. However, the Proventia Desktop product is not affected by this evasion. No other IBM ISS products currently incorporate the Virus Prevention System technology.
- Impact
- -
- Solution
- -
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:ibm:proventia_desktop_endpoint_security:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B77F1551-5C37-4D5B-AC86-C2965083B93D"
},
{
"criteria": "cpe:2.3:a:ibm:proventia_network_mail_security_system:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C520BF35-8406-44E3-8FC6-D8BD7242D13B"
},
{
"criteria": "cpe:2.3:h:ibm:network_multi-function_security:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F24569C0-A783-4CFC-9A74-794DBA96E719"
},
{
"criteria": "cpe:2.3:h:ibm:proventia_network_mail_security_system_virtual_appliance:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3F19781E-ECC4-40A0-8027-2DC059FB989E"
}
],
"operator": "OR"
}
]
}
]