Null byte file extension bypass vulnerability in Intel Security McAfee Email Gateway (MEG) before 7.6.404h1128596

Null byte file extension bypass vulnerability in Intel Security McAfee Email Gateway (MEG) before 7.6.404h1128596

CVE-2016-8005 · MEDIUM Severity

AV:N/AC:L/AU:S/C:N/I:P/A:N

File extension filtering vulnerability in Intel Security McAfee Email Gateway (MEG) before 7.6.404h1128596 allows attackers to fail to identify the file name properly via scanning an email with a forged attached filename that uses a null byte within the filename extension.

Learn more about our Web Application Penetration Testing UK.