CVE-2009-1491
McAfee GroupShield - Virus Detection Bypass via X-Header Injection
Title source: llmDescription
McAfee GroupShield for Microsoft Exchange on Exchange Server 2000, and possibly other anti-virus or anti-spam products from McAfee or other vendors, does not scan X- headers for malicious content, which allows remote attackers to bypass virus detection via a crafted message, as demonstrated by a message with an X-Testing header and no message body.
References (2)
Core 2
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/50354
Exploit x_refsource_misc
http://www.nmrc.org/~thegnome/blog/apr09/
Scores
EPSS
0.0025
EPSS Percentile
47.9%
Details
CWE
CWE-20
Status
published
Products (1)
mcafee/groupshield
Published
May 05, 2009
Tracked Since
Feb 18, 2026