CVE-2016-8005

EPSS 0.22%
Published 14.03.2017 22:59:00
Last modified 20.04.2025 01:37:25
Source secure@intel.com
Teams watchlist Login
Open Login

File extension filtering vulnerability in Intel Security McAfee Email Gateway (MEG) before 7.6.404h1128596 allows attackers to fail to identify the file name properly via scanning an email with a forged attached filename that uses a null byte within the filename extension.

Affected products Warnungen 0 Metrics 3 CWE 0 References 4

Data is provided by the National Vulnerability Database (NVD)

Mcafee ≫ Email Gateway Version <= 7.6.401

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.22%	0.416

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	6.5	2.8	3.6	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
nvd@nist.gov	4	8	2.9	AV:N/AC:L/Au:S/C:N/I:P/A:N

https://kc.mcafee.com/corporate/index?page=content&id=SB10161

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2016-8005

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2016-8005

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2016-8005

EUVD