Strix
26.1K

CVE-2002-1121

UnknownEPSS 6.67%

Last modified

CVE-2002-1121 is a vulnerability of currently unknown severity. SMTP content filter engines, including (1) GFI MailSecurity for Exchange/SMTP before 7.2, (2) InterScan VirusWall before 3.52 build 1494, (3) the default configuration of MIMEDefang before 2.21, and possibly other products, do not detect fragmented emails as defined in RFC2046 ("Message Fragmentation and Reassembly") and supported in such products as Outlook Express, which allows remote attackers to bypass content filtering, including virus checking, via fragmented emails of the message/partial content type.. EPSS estimates a 6.67% chance of exploitation in the next 30 days.

Description

SMTP content filter engines, including (1) GFI MailSecurity for Exchange/SMTP before 7.2, (2) InterScan VirusWall before 3.52 build 1494, (3) the default configuration of MIMEDefang before 2.21, and possibly other products, do not detect fragmented emails as defined in RFC2046 ("Message Fragmentation and Reassembly") and supported in such products as Outlook Express, which allows remote attackers to bypass content filtering, including virus checking, via fragmented emails of the message/partial content type.

Metrics

EPSS Probability
6.67%

93.0th percentile

Probability of exploitation in the next 30 days. Learn more

Affected Software

VendorProductVersions
GfiMailsecurity7.2
Network AssociatesWebshield Smtp4.0.5
Network AssociatesWebshield Smtp4.5
Network AssociatesWebshield Smtp4.5.44
Network AssociatesWebshield Smtp4.5.74.0
Roaring PenguinCanit1.2
Roaring PenguinMimedefang2.14
Roaring PenguinMimedefang2.20
Trend MicroInterscan Viruswall3.5
Trend MicroInterscan Viruswall3.51
Trend MicroInterscan Viruswall3.52

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2002-1121?
SMTP content filter engines, including (1) GFI MailSecurity for Exchange/SMTP before 7.2, (2) InterScan VirusWall before 3.52 build 1494, (3) the default configuration of MIMEDefang before 2.21, and possibly other products, do not detect fragmented emails as defined in RFC2046 ("Message Fragmentation and Reassembly") and supported in such products as Outlook Express, which allows remote attackers to bypass content filtering, including virus checking, via fragmented emails of the message/partial content type.
How severe is CVE-2002-1121?
Severity scoring for CVE-2002-1121 is pending analysis. The EPSS model estimates a 6.67% probability of exploitation in the next 30 days.
How do I fix CVE-2002-1121?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2002-1121?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST