Lucene search

[email protected]CVE-2003-1015

HistoryOct 20, 2004 - 4:00 a.m.

CVE-2003-1015

2004-10-2004:00:00

[email protected]

web.nvd.nist.gov

cve-2003-1015

content security

gateway

antivirus

vulnerability

mime

mail clients

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

6.8 Medium

AI Score

Confidence

Low

0.008 Low

EPSS

Percentile

81.7%

JSON

Multiple content security gateway and antivirus products allow remote attackers to bypass content restrictions via MIME messages that use whitespace in an unusual fashion, which may be interpreted differently by mail clients.

Affected configurations

NVD

Node

clearswiftmailsweeperMatch4.3.7

clearswiftmailsweeperMatch4.3.8

clearswiftmailsweeperMatch4.3.10

clearswiftmailsweeperMatch4.3.11

clearswiftmailsweeperMatch4.3.13

clearswiftmailsweeperMatch4.3.14

clearswiftmailsweeperMatch4.3.15

f-secureinternet_gatekeeperMatch6.3

f-secureinternet_gatekeeperMatch6.4

f-secureinternet_gatekeeperMatch6.31

f-secureinternet_gatekeeperMatch6.32

paul_l_danielsripmimeMatch1.2.0

paul_l_danielsripmimeMatch1.2.1

paul_l_danielsripmimeMatch1.2.2

paul_l_danielsripmimeMatch1.2.3

paul_l_danielsripmimeMatch1.2.4

paul_l_danielsripmimeMatch1.2.5

paul_l_danielsripmimeMatch1.2.6

paul_l_danielsripmimeMatch1.2.7

paul_l_danielsripmimeMatch1.3.2.0

paul_l_danielsripmimeMatch1.3.2.2

paul_l_danielsripmimeMatch1.3.2.3

CPENameOperatorVersion
clearswift:mailsweeperclearswift mailsweepereq4.3.7
clearswift:mailsweeperclearswift mailsweepereq4.3.8
clearswift:mailsweeperclearswift mailsweepereq4.3.10
clearswift:mailsweeperclearswift mailsweepereq4.3.11
clearswift:mailsweeperclearswift mailsweepereq4.3.13
clearswift:mailsweeperclearswift mailsweepereq4.3.14
clearswift:mailsweeperclearswift mailsweepereq4.3.15
f-secure:internet_gatekeeperf-secure internet gatekeepereq6.3
f-secure:internet_gatekeeperf-secure internet gatekeepereq6.4
f-secure:internet_gatekeeperf-secure internet gatekeepereq6.31

CPE	Name	Operator	Version
clearswift:mailsweeper	clearswift mailsweeper	eq	4.3.7
clearswift:mailsweeper	clearswift mailsweeper	eq	4.3.8
clearswift:mailsweeper	clearswift mailsweeper	eq	4.3.10
clearswift:mailsweeper	clearswift mailsweeper	eq	4.3.11
clearswift:mailsweeper	clearswift mailsweeper	eq	4.3.13
clearswift:mailsweeper	clearswift mailsweeper	eq	4.3.14
clearswift:mailsweeper	clearswift mailsweeper	eq	4.3.15
f-secure:internet_gatekeeper	f-secure internet gatekeeper	eq	6.3
f-secure:internet_gatekeeper	f-secure internet gatekeeper	eq	6.4
f-secure:internet_gatekeeper	f-secure internet gatekeeper	eq	6.31

Rows per page:

1-10 of 221

References

marc.info/?l=bugtraq&m=109525252118936&w=2

www.uniras.gov.uk/vuls/2004/380375/mime.htm

exchange.xforce.ibmcloud.com/vulnerabilities/9273

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

6.8 Medium

AI Score

Confidence

Low

0.008 Low

EPSS

Percentile

81.7%

JSON

Related for CVE-2003-1015

securityvulns1 cvelist1 nvd1