F-Secure Internet Gatekeeper MIME Decoding Filter Bypass

2004-09-17T00:00:00
ID OSVDB:10024
Type osvdb
Reporter Martin O'Neal(martin.oneal@corsaire.com)
Modified 2004-09-17T00:00:00

Description

Vulnerability Description

Internet Gatekeeper contains a flaw that may allow a malicious user to bypass filters. The issue is triggered when an attacker sends messages containing malformed Content-Transfer-Encoding headers. It is possible that the flaw may allow an attacker to bypass filters resulting in the execution of an unblocked file by the client.

Solution Description

Upgrade to version 6.41 or higher, as vendor claims it will fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

Internet Gatekeeper contains a flaw that may allow a malicious user to bypass filters. The issue is triggered when an attacker sends messages containing malformed Content-Transfer-Encoding headers. It is possible that the flaw may allow an attacker to bypass filters resulting in the execution of an unblocked file by the client.

References:

Vendor URL: http://www.f-secure.com/ Security Tracker: 1011349 Secunia Advisory ID:12514 Other Advisory URL: http://www.uniras.gov.uk/vuls/2004/380375/mime.htm