VYPR
Unrated severityNVD Advisory· Published Aug 26, 2012· Updated Jun 16, 2026

CVE-2009-5131

CVE-2009-5131

Description

The Receive Service in Websense Email Security before 7.1 does not recognize domain extensions in the blacklist, which allows remote attackers to bypass intended access restrictions and send e-mail messages via an SMTP session.

Affected products

4
  • cpe:2.3:a:websense:websense_email_security:*:*:*:*:*:*:*:*+ 3 more
    • cpe:2.3:a:websense:websense_email_security:*:*:*:*:*:*:*:*range: <=7.0
    • cpe:2.3:a:websense:websense_email_security:6.1:*:*:*:*:*:*:*
    • cpe:2.3:a:websense:websense_email_security:6.1:sp1:*:*:*:*:*:*
    • (no CPE)range: <7.1

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.