Re: Bypassing SMTP Content Protection with a Flick of a Button

From: Gossi The Dog (gossi@lab6.com)
Date: 09/13/02

• Previous message: Marco van Berkum: "Re: xbreaky symlink vulnerability"
• Maybe in reply to: Aviram Jenik: "Bypassing SMTP Content Protection with a Flick of a Button"
• Next in thread: Steven M. Bellovin: "Re: Bypassing SMTP Content Protection with a Flick of a Button"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Date: Fri, 13 Sep 2002 12:13:43 -0000 (GMT)
From: "Gossi The Dog" <gossi@lab6.com>
To: <bugtraq@securityfocus.com>

Regarding NAI Webshield;

Webshield Solaris, e250 and e500 all reassemble the messages and correctly
scan them.

Webshield SMTP (ie for NT/2000) does not follow the RFC, and the messages
are blindly passed on, bypassing content filters, virus checking etc.

-----Original Message-----
From: Aviram Jenik [mailto:aviram@beyondsecurity.com]
Sent: 12 September 2002 14:45
To: bugtraq@securityfocus.com
Subject: Bypassing SMTP Content Protection with a Flick of a Button

  Bypassing SMTP Content Protection with a Flick of a Button
------------------------------------------------------------------------

Article reference: http://www.securiteam.com/securitynews/5YP0A0K8CM.html

<snip>

---

• Previous message: Marco van Berkum: "Re: xbreaky symlink vulnerability"
• Maybe in reply to: Aviram Jenik: "Bypassing SMTP Content Protection with a Flick of a Button"
• Next in thread: Steven M. Bellovin: "Re: Bypassing SMTP Content Protection with a Flick of a Button"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(15)