RITLabs The Bat! before 3.0.0.15 displays certain important headers from encapsulated data in message/partial MIME messages, instead of the real headers, which is in violation of RFC2046 header merging rules and allows remote attackers to spoof the origin of e-mail by sending a fragmented message, as demonstrated using spoofed Received: and Message-ID: headers.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2006-02-10T11:00:00
Updated: 2024-08-07T16:41:28.944Z
Reserved: 2006-02-10T00:00:00
Link: CVE-2006-0630
Vulnrichment
No data.
NVD
Status : Modified
Published: 2006-02-10T11:02:00.000
Modified: 2024-11-21T00:06:57.523
Link: CVE-2006-0630
Redhat
No data.