CyberSec.Space Logo
Back to CVE Browser

CVE-2019-19680

HIGH
8.8
CVSS Severity Score
EPSS Score0.1460%
EPSS Percentile20.17th
PublishedJan 13, 2020
Last ModifiedNov 21, 2024

Vulnerability Description

A file-extension filtering vulnerability in Proofpoint Enterprise Protection (PPS / PoD), in the unpatched versions of PPS through 8.9.22 and 8.14.2 respectively, allows attackers to bypass protection mechanisms (related to extensions, MIME types, virus detection, and journal entries for transmitted files) by sending malformed (not RFC compliant) multipart email.

Affected Platforms (CPE)

πŸ“¦
Proofpoint

Enterprise Protection

<= 8.9.22
πŸ“¦
Proofpoint

Enterprise Protection

<= 8.14.2

References & Advisories

πŸ”— https://www.proofpoint.com/us/security/cve-2019-19680
πŸ”— https://www.proofpoint.com/us/security/security-advisories/pfpt-sa-2020-0001
πŸ”— https://www.proofpoint.com/us/security/cve-2019-19680
πŸ”— https://www.proofpoint.com/us/security/security-advisories/pfpt-sa-2020-0001

Related Vulnerabilities

CVE-2006-517210.0

Stack-based buffer overflow in the RPC interface in Mediasvr.exe in Computer Associates (CA) Brightstor ARCserve Backup 9.01 throu...

CVE-2006-517110.0

Stack-based buffer overflow in the RPC interface in Mediasvr.exe in Computer Associates (CA) Brightstor ARCserve Backup 9.01 throu...

CVE-2006-662710.0

Integer overflow in the packed PE file parsing implementation in BitDefender products before 20060829, including Antivirus, Antivi...

CVE-2007-213910.0

Multiple stack-based buffer overflows in the SUN RPC service in CA (formerly Computer Associates) BrightStor ARCserve Media Server...