CVE-2011-1901

The mail-filter web interface in Proofpoint Messaging Security Gateway 6.2.0.263:6.2.0.237 and earlier in Proofpoint Protection Server 5.5.3, 5.5.4, 5.5.5, 6.0.2, 6.1.1, and 6.2.0 allows remote attackers to bypass authentication via unspecified vectors.

Weakness

When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.

Affected Software

Name	Vendor	Start Version	End Version
Messaging_security_gateway	Proofpoint	*	6.2.0.263:6.2.0.237
Protection_server	Proofpoint	5.5.3	5.5.3
Protection_server	Proofpoint	5.5.4	5.5.4
Protection_server	Proofpoint	5.5.5	5.5.5
Protection_server	Proofpoint	6.0.2	6.0.2
Protection_server	Proofpoint	6.1.1	6.1.1
Protection_server	Proofpoint	6.2.0	6.2.0

Potential Mitigations

https://cwe.mitre.org/data/definitions/114.html
https://cwe.mitre.org/data/definitions/115.html
https://cwe.mitre.org/data/definitions/151.html
https://cwe.mitre.org/data/definitions/194.html
https://cwe.mitre.org/data/definitions/22.html
https://cwe.mitre.org/data/definitions/57.html
https://cwe.mitre.org/data/definitions/593.html
https://cwe.mitre.org/data/definitions/633.html
https://cwe.mitre.org/data/definitions/650.html
https://cwe.mitre.org/data/definitions/94.html

References

http://www.clearskies.net/documents/css-advisory-css1105-proofpoint.php
http://www.kb.cert.org/vuls/id/790980
https://support.proofpoint.com/article.cgi?article_id=338413

NVD	https://nvd.nist.gov/vuln/detail/CVE-2011-1901
CWE	https://cwe.mitre.org/data/definitions/287.html

Improper Authentication

Weakness

Affected Software

Potential Mitigations

Related Attack Patterns

References