CVE-2006-0630

by Fred · 10/02/2006

RITLabs The Bat! before 3.0.0.15 displays certain important headers from encapsulated data in message/partial MIME messages, instead of the real headers, which is in violation of RFC2046 header merging rules and allows remote attackers to spoof the origin of e-mail by sending a fragmented message, as demonstrated using spoofed Received: and Message-ID: headers.

Date published : 2006-02-10

http://www.securityfocus.com/bid/16515

http://www.securityfocus.com/archive/1/424129/100/0/threaded

CVE-2006-0630

Similar

Recent Posts

Categories

CVE-2006-0630

Share this:

Similar

Recent Posts

Categories

Tags