Unrated severityNVD Advisory· Published Apr 3, 2009· Updated Apr 23, 2026
CVE-2009-1240
CVE-2009-1240
Description
Unspecified vulnerability in the IBM Proventia engine 4.9.0.0.44 20081231, as used in IBM Proventia Network Mail Security System, Network Mail Security System Virtual Appliance, Desktop Endpoint Security, Network Multi-Function Security (MFS), and possibly other products, allows remote attackers to bypass detection of malware via a modified RAR archive.
Affected products
4- cpe:2.3:a:ibm:proventia_desktop_endpoint_security:*:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:proventia_network_mail_security_system:*:*:*:*:*:*:*:*
- cpe:2.3:h:ibm:network_multi-function_security:*:*:*:*:*:*:*:*
- cpe:2.3:h:ibm:proventia_network_mail_security_system_virtual_appliance:*:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
7- blog.zoller.lu/2009/04/ibm-proventia-evasion-limited-details.htmlnvd
- iss.custhelp.com/cgi-bin/iss.cfg/php/enduser/std_adp.phpnvd
- www.securityfocus.com/archive/1/502369/100/0/threadednvd
- www.securityfocus.com/archive/1/504987/100/0/threadednvd
- www.securityfocus.com/archive/1/504992/100/0/threadednvd
- www.securityfocus.com/archive/1/504995/100/0/threadednvd
- www.securityfocus.com/bid/34345nvd
News mentions
0No linked articles in our index yet.