CyberSec.Space Logo
CVEブラウザに戻る

CVE-2019-19680

HIGH
8.8
CVSS Severity Score
EPSS Score0.1460%
EPSS Percentile20.17th
Published2020年1月13日
Last Modified2024年11月21日

Vulnerability Description

A file-extension filtering vulnerability in Proofpoint Enterprise Protection (PPS / PoD), in the unpatched versions of PPS through 8.9.22 and 8.14.2 respectively, allows attackers to bypass protection mechanisms (related to extensions, MIME types, virus detection, and journal entries for transmitted files) by sending malformed (not RFC compliant) multipart email.

Affected Platforms (CPE)

📦
Proofpoint

Enterprise Protection

<= 8.9.22
📦
Proofpoint

Enterprise Protection

<= 8.14.2

References & Advisories

🔗 https://www.proofpoint.com/us/security/cve-2019-19680
🔗 https://www.proofpoint.com/us/security/security-advisories/pfpt-sa-2020-0001
🔗 https://www.proofpoint.com/us/security/cve-2019-19680
🔗 https://www.proofpoint.com/us/security/security-advisories/pfpt-sa-2020-0001

関連する脆弱性情報

CVE-2006-517210.0

Stack-based buffer overflow in the RPC interface in Mediasvr.exe in Computer Associates (CA) Brightstor ARCserve Backup 9.01 throu...

CVE-2006-517110.0

Stack-based buffer overflow in the RPC interface in Mediasvr.exe in Computer Associates (CA) Brightstor ARCserve Backup 9.01 throu...

CVE-2006-662710.0

Integer overflow in the packed PE file parsing implementation in BitDefender products before 20060829, including Antivirus, Antivi...

CVE-2007-213910.0

Multiple stack-based buffer overflows in the SUN RPC service in CA (formerly Computer Associates) BrightStor ARCserve Media Server...