Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
McAfee GroupShield for Microsoft Exchange on Exchange Server 2000, and possibly other anti-virus or anti-spam products from McAfee or other vendors, does not scan X- headers for malicious content, which allows remote attackers to bypass virus detection via a crafted message, as demonstrated by a message with an X-Testing header and no message body.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
McAfee GroupShield for Microsoft Exchange X-header 逃避扫描漏洞
Vulnerability Description
McAfee GroupShieldr for Microsoft Exchange是McAfee公司针对微软公司的Exchange邮件服务器开发的一款防病毒及反垃圾邮件的安全产品。 McAfee GroupShield能够在Exchange Server 2000,可能还有其他反病毒软件或来自其他厂商的产品,使得Exchange Server没有扫描X- headers的恶意内容,这会允许远程攻击者可以借助一个特制的信息,例如通过一个具有一个X-Testing头但没有信息正文的信息,绕过病毒检测。
CVSS Information
N/A
Vulnerability Type
N/A