CVE-2009-2543 | Vulnerability Database | Aqua Security

Multiple unspecified vulnerabilities in the IBM Proventia engine 4.9.0.0.44 20081231, as used in IBM Proventia Network Mail Security System, Network Mail Security System Virtual Appliance, Desktop Endpoint Security, Network Multi-Function Security (MFS), and possibly other products, allow remote attackers to bypass detection of malware via a modified (1) ZIP or (2) CAB archive, a related issue to CVE-2009-1240.

Affected Software

Name	Vendor	Start Version	End Version
Proventia_desktop_endpoint_security	Ibm	*	*
Proventia_network_mail_security_system	Ibm	*	*
Proventia_network_mail_security_system_vitual_appliance	Ibm	*	*
Proventia_network_multi-function_security	Ibm	*	*

References

http://iss.custhelp.com/cgi-bin/iss.cfg/php/enduser/std_adp.php?p_faqid=5417
http://www.securityfocus.com/archive/1/504987/100/0/threaded
http://www.securityfocus.com/archive/1/504992/100/0/threaded
http://www.securityfocus.com/archive/1/504995/100/0/threaded
http://iss.custhelp.com/cgi-bin/iss.cfg/php/enduser/std_adp.php?p_faqid=5417
http://www.securityfocus.com/archive/1/504987/100/0/threaded
http://www.securityfocus.com/archive/1/504992/100/0/threaded
http://www.securityfocus.com/archive/1/504995/100/0/threaded

NVD	https://nvd.nist.gov/vuln/detail/CVE-2009-2543
CWE	https://cwe.mitre.org/data/definitions/.html