CVE-2001-1542
Summary
| CVE | CVE-2001-1542 |
|---|---|
| State | PUBLISHED |
| Assigner | mitre |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2001-12-31 05:00:00 UTC |
| Updated | 2025-04-03 01:03:51 UTC |
| Description | NAI WebShield SMTP 4.5 and possibly 4.5 MR1a does not filter improperly MIME encoded email attachments, which could allow remote attackers to bypass filtering and possibly execute arbitrary code in email clients that process the invalid attachments. |
Risk And Classification
Primary CVSS: v2.0 7.5 from [email protected]
AV:N/AC:L/Au:N/C:P/I:P/A:P
Problem Types: NVD-CWE-Other | n/a
CVSS v2.0 Breakdown
Access Vector
NetworkAccess Complexity
LowAuthentication
NoneConfidentiality
PartialIntegrity
PartialAvailability
PartialAV:N/AC:L/Au:N/C:P/I:P/A:P
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Network Associates | Webshield Smtp | 4.5 | All | All | All |
| Application | Network Associates | Webshield Smtp | 4.5_mr1a | All | All | All |
Vendor Declared Affected Products
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| ISS X-Force Database: | af854a3a-2127-422b-91ae-364da2661108 | www.iss.net | |
| Neohapsis Archives - Bugtraq - Re: NAI Webshield SMTP for WinNT MIME header vuln that allows BadTrans to pass] - From [email protected] | af854a3a-2127-422b-91ae-364da2661108 | archives.neohapsis.com | |
| Network Associates WebShield SMTP Malformed Mime Header Vulnerability | af854a3a-2127-422b-91ae-364da2661108 | www.securityfocus.com | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.