Unrated severityNVD Advisory· Published May 5, 2009· Updated Jun 16, 2026
CVE-2009-1491
CVE-2009-1491
Description
McAfee GroupShield for Microsoft Exchange on Exchange Server 2000, and possibly other anti-virus or anti-spam products from McAfee or other vendors, does not scan X- headers for malicious content, which allows remote attackers to bypass virus detection via a crafted message, as demonstrated by a message with an X-Testing header and no message body.
Affected products
2- cpe:2.3:a:mcafee:groupshield:*:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.