CVE-2009-1240 Information
Description
Unspecified vulnerability in the IBM Proventia engine 4.9.0.0.44 20081231 as used in IBM Proventia Network Mail Security System Network Mail Security System Virtual Appliance Desktop Endpoint Security Network Multi-Function Security (MFS) and possibly other products allows remote attackers to bypass detection of malware via a modified RAR archive.
Reference
http://blog.zoller.lu/2009/04/ibm-proventia-evasion-limited-details.html http://iss.custhelp.com/cgi-bin/iss.cfg/php/enduser/std_adp.php?p_faqid=5417 http://www.securityfocus.com/archive/1/502369/100/0/threaded http://www.securityfocus.com/archive/1/504987/100/0/threaded http://www.securityfocus.com/archive/1/504992/100/0/threaded http://www.securityfocus.com/archive/1/504995/100/0/threaded http://www.securityfocus.com/bid/34345
Share on: