CVE-2004-2088

Опубликовано: 12 фев. 2004

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

Sophos Anti-Virus 3.78 allows remote attackers to bypass virus scanning by using a qmail generated Delivery Status Notification (DSN) where the original email is not included in the bounce message.

Ссылки

http://secunia.com/advisories/10855
http://securitytracker.com/id?1009042
http://www.securityfocus.com/bid/9650
Patch
Vendor Advisory
http://www.sophos.com/support/news/#mime-378
Patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/15192
http://secunia.com/advisories/10855
http://securitytracker.com/id?1009042
http://www.securityfocus.com/bid/9650
Patch
Vendor Advisory
http://www.sophos.com/support/news/#mime-378
Patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/15192

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:sophos:sophos_anti-virus:3.4.6:*:*:*:*:*:*:*

cpe:2.3:a:sophos:sophos_anti-virus:3.78:*:*:*:*:*:*:*

EPSS

Процентиль: 90%

0.05692

Низкий

5 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-pc4g-qx8h-rcf5

github

почти 4 года назад