Vigil@nce: Websense Email Security, bypassing rules
September 2012 by Vigil@nce
This bulletin was written by Vigil@nce : http://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
When filtering rules of Websense Email Security contain domain
extensions, an attacker can send an email which bypasses them.
– Impacted products: Websense Email Security
– Severity: 2/4
– Creation date: 28/08/2012
DESCRIPTION OF THE VULNERABILITY
When filtering rules of Websense Email Security contain domain
extensions, an attacker can send an email which bypasses them.
Technical details are unknown.
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
http://vigilance.fr/vulnerability/Websense-Email-Security-bypassing-rules-11899