CVE-2002-1121

First published: Sat Sep 14 2002(Updated: )

SMTP content filter engines, including (1) GFI MailSecurity for Exchange/SMTP before 7.2, (2) InterScan VirusWall before 3.52 build 1494, (3) the default configuration of MIMEDefang before 2.21, and possibly other products, do not detect fragmented emails as defined in RFC2046 ("Message Fragmentation and Reassembly") and supported in such products as Outlook Express, which allows remote attackers to bypass content filtering, including virus checking, via fragmented emails of the message/partial content type.

Credit: cve@mitre.org

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

• collector/nvd-historical
• vendor/gfi
• product/mailsecurity
• canonical/gfi mailsecurity
• vendor/trend micro
• product/interscan viruswall
• canonical/trend micro interscan viruswall
• vendor/roaring penguin
• product/mimedefang
• canonical/roaring penguin mimedefang
• vendor/network associates
• product/webshield smtp
• canonical/network associates webshield smtp
• product/canit
• canonical/roaring penguin canit
• collector/nvd-index
• agent/references
• agent/severity
• agent/weakness
• agent/author
• agent/first-publish-date
• agent/last-modified-date
• agent/softwarecombine
• agent/event
• agent/description
• agent/type
• agent/tags
• collector/mitre-cve
• source/MITRE
• version/gfi mailsecurity/7.2
• version/trend micro interscan viruswall/3.51
• version/roaring penguin mimedefang/2.14
• version/network associates webshield smtp/4.0.5
• version/trend micro interscan viruswall/3.5
• version/roaring penguin canit/1.2
• version/network associates webshield smtp/4.5.44
• version/roaring penguin mimedefang/2.20
• version/network associates webshield smtp/4.5.74.0
• version/trend micro interscan viruswall/3.52
• version/network associates webshield smtp/4.5