Brightmail antispam not updating

19-Dec-2014 13:54 by 3 Comments

Brightmail antispam not updating

Subscribe: Definitions: (Criticality, Where etc.) Please Note: Secunia recommends that you verify all advisories you receive by clicking the link.

Symantec Brightmail Anti-Spam - (version ) - support - Value Program - CD - Linux, Win, Solaris - International is a Commercial software in the category Home & Hobby developed by Symantec.The latest version of Symantec Brightmail Anti-Spam - (version ) - support - Value Program - CD - Linux, Win, Solaris - International is currently unknown.It was initially added to our database on 08/24/2007.Symantec Brightmail Anti-Spam - (version ) - support - Value Program - CD - Linux, Win, Solaris - International requires any Windows operating system to be running on the computer it will be installed on.TITLE: Symantec Brightmail Anti Spam MIME Processing Denial of Service SECUNIA ADVISORY ID: SA17170 VERIFY ADVISORY: CRITICAL: Moderately critical IMPACT: Do S WHERE: From remote SOFTWARE: Symantec Brightmail Anti Spam 6.x DESCRIPTION: A vulnerability has been reported in Brightmail Anti Spam, which potentially can be exploited by malicious people to cause a Do S (Denial of Service).The vulnerability is caused due to an error in processing certain malformed MIME content.

This may be exploited to crash the "bmserver" component and cause a Do S.

The vulnerability has been reported in the following versions: * Symantec Brightmail Anti Spam 6.0.1 * Symantec Brightmail Anti Spam 6.0.2 SOLUTION: Apply patches.

The vendor recommends users with product versions prior to 6.0.1 to upgrade to the latest product version.

Symantec Brightmail Anti Spam 6.0.1: Apply patch 162.

ftp://ftp.symantec.com/public/english_us_canada/products/sba/sba_60x/updates/patch162Symantec Brightmail Anti Spam 6.0.2: Apply patch 161 ftp://ftp.symantec.com/public/english_us_canada/products/sba/sba_60x/updates/patch161PROVIDED AND/OR DISCOVERED BY: Reported by vendor.

ORIGINAL ADVISORY: About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities.