VYPR
Get started
← All advisories
Unrated severityNVD Advisory· Published Sep 24, 2002· Updated Apr 16, 2026

CVE-2002-1121

CVE-2002-1121

Description

SMTP content filter engines, including (1) GFI MailSecurity for Exchange/SMTP before 7.2, (2) InterScan VirusWall before 3.52 build 1494, (3) the default configuration of MIMEDefang before 2.21, and possibly other products, do not detect fragmented emails as defined in RFC2046 ("Message Fragmentation and Reassembly") and supported in such products as Outlook Express, which allows remote attackers to bypass content filtering, including virus checking, via fragmented emails of the message/partial content type.

Affected products

11
  • Gfi/Mailsecurity
    cpe:2.3:a:gfi:mailsecurity:7.2:*:exchange_smtp:*:*:*:*:*
  • Network Associates/Webshield Smtp4 versions
    cpe:2.3:a:network_associates:webshield_smtp:4.0.5:*:*:*:*:*:*:*+ 3 more
    • cpe:2.3:a:network_associates:webshield_smtp:4.0.5:*:*:*:*:*:*:*
    • cpe:2.3:a:network_associates:webshield_smtp:4.5:*:*:*:*:*:*:*
    • cpe:2.3:a:network_associates:webshield_smtp:4.5.44:*:*:*:*:*:*:*
    • cpe:2.3:a:network_associates:webshield_smtp:4.5.74.0:*:*:*:*:*:*:*
  • Roaring Penguin/Canit
    cpe:2.3:a:roaring_penguin:canit:1.2:*:*:*:*:*:*:*
  • Roaring Penguin/Mimedefang2 versions
    cpe:2.3:a:roaring_penguin:mimedefang:2.14:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:roaring_penguin:mimedefang:2.14:*:*:*:*:*:*:*
    • cpe:2.3:a:roaring_penguin:mimedefang:2.20:*:*:*:*:*:*:*
  • Trend Micro/Interscan Viruswall3 versions
    cpe:2.3:a:trend_micro:interscan_viruswall:3.5:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:trend_micro:interscan_viruswall:3.5:*:*:*:*:*:*:*
    • cpe:2.3:a:trend_micro:interscan_viruswall:3.51:*:*:*:*:*:*:*
    • cpe:2.3:a:trend_micro:interscan_viruswall:3.52:*:*:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

9

News mentions

0

No linked articles in our index yet.