Vulnerabilities > CVE-2009-1240 - Unspecified vulnerability in IBM products
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Unspecified vulnerability in the IBM Proventia engine 4.9.0.0.44 20081231, as used in IBM Proventia Network Mail Security System, Network Mail Security System Virtual Appliance, Desktop Endpoint Security, Network Multi-Function Security (MFS), and possibly other products, allows remote attackers to bypass detection of malware via a modified RAR archive.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Hardware | 2 | |
| Application | 2 |
References
- http://blog.zoller.lu/2009/04/ibm-proventia-evasion-limited-details.html
- http://blog.zoller.lu/2009/04/ibm-proventia-evasion-limited-details.html
- http://iss.custhelp.com/cgi-bin/iss.cfg/php/enduser/std_adp.php?p_faqid=5417
- http://iss.custhelp.com/cgi-bin/iss.cfg/php/enduser/std_adp.php?p_faqid=5417
- http://www.securityfocus.com/archive/1/502369/100/0/threaded
- http://www.securityfocus.com/archive/1/502369/100/0/threaded
- http://www.securityfocus.com/archive/1/504987/100/0/threaded
- http://www.securityfocus.com/archive/1/504987/100/0/threaded
- http://www.securityfocus.com/archive/1/504992/100/0/threaded
- http://www.securityfocus.com/archive/1/504992/100/0/threaded
- http://www.securityfocus.com/archive/1/504995/100/0/threaded
- http://www.securityfocus.com/archive/1/504995/100/0/threaded
- http://www.securityfocus.com/bid/34345
- http://www.securityfocus.com/bid/34345