CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2009-5131

The Receive Service in Websense Email Security before 7.1 does not recognize domain extensions in the blacklist, which allows remote attackers to bypass intended access restrictions and send e-mail messages via an SMTP session.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 59.7%

CVSS Severity

CVSS v2 Score 5.0

References

http://www.websense.com/support/article/t-kbarticle/Release-Notes-for-Websense-Email-Security-v7-1
http://www.websense.com/support/article/t-kbarticle/Release-Notes-for-Websense-Email-Security-v7-1

Products affected by CVE-2009-5131

Websense » Websense Email Security » Version: 6.1

cpe:2.3:a:websense:websense_email_security:6.1
Websense » Websense Email Security » Version: 7.0

cpe:2.3:a:websense:websense_email_security:7.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2009-5131

Products

Pricing

Contact Us