Vulnerabilities > IBM > Proventia Network Mail Security System

DATE CVE VULNERABILITY TITLE RISK
2012-07-27 CVE-2012-2202 Path Traversal vulnerability in IBM products
Directory traversal vulnerability in javatester_init.php in IBM Lotus Protector for Mail Security 2.1, 2.5, 2.5.1, and 2.8 and IBM ISS Proventia Network Mail Security System allows remote authenticated administrators to read arbitrary files via a ..
network
ibm CWE-22
3.5
3.5
2012-07-20 CVE-2012-2955 Cross-Site Scripting vulnerability in IBM products
Multiple cross-site scripting (XSS) vulnerabilities in the administrative user interface in IBM Lotus Protector for Mail Security 2.1, 2.5, 2.5.1, and 2.8 and IBM ISS Proventia Network Mail Security System allow remote attackers to inject arbitrary web script or HTML via the query string.
network
ibm CWE-79
4.3
4.3
2009-07-20 CVE-2009-2543 Unspecified vulnerability in IBM products
Multiple unspecified vulnerabilities in the IBM Proventia engine 4.9.0.0.44 20081231, as used in IBM Proventia Network Mail Security System, Network Mail Security System Virtual Appliance, Desktop Endpoint Security, Network Multi-Function Security (MFS), and possibly other products, allow remote attackers to bypass detection of malware via a modified (1) ZIP or (2) CAB archive, a related issue to CVE-2009-1240.
network
low complexity
ibm
critical
 10.0
10
2009-04-03 CVE-2009-1240 Unspecified vulnerability in IBM products
Unspecified vulnerability in the IBM Proventia engine 4.9.0.0.44 20081231, as used in IBM Proventia Network Mail Security System, Network Mail Security System Virtual Appliance, Desktop Endpoint Security, Network Multi-Function Security (MFS), and possibly other products, allows remote attackers to bypass detection of malware via a modified RAR archive.
network
low complexity
ibm
critical
 10.0
10