Advertisement




Edit Report

Our sensors found this exploit at: http://cxsecurity.com/ascii/WLB-2005090013

Below is a copy:

======================================================================
- Sybari Antigen for SMTP / Exchange Rule / Attachment Pass through -
======================================================================
1) Affected Software

Sybari Antigen v8.0 SR2 for Exchange/SMTP

Other versions may also be affected.

======================================================================
2) Description of Vulnerability

A vulnerability has been discovered in Antigen for Exchange/SMTP, which
could potentially be exploited by malicious people to compromise a
vulnerable system.

The vulnerability is caused by the way Antigen processes its rules in
handling SMTP messages. A message, containing the Subject line of: 
"Antigen forwarded attachment" can be exploited to cause Antigen to
ignore custom filters allowing unwanted file attachments into the email
system. This vulnerability does not disable or bypass virus scanning of
attachments.

Successful exploitation may allow an unwanted file type to be delivered
into a user's email inbox.

======================================================================
3) Solution

Update to the latest version via online update.
(Antigen v8.0 sr3 for Exchange/SMTP Version 8.00.1517 SR3).

======================================================================
4) Credits

Reported by Alan G. Monaghan, Gardner Publications, Inc. on Thursday,
September 01, 2005

Copyright ©2023 Exploitalert.

All trademarks used are properties of their respective owners. By visiting this website you agree to Terms of Use.