Answered
cfmail multipart treated as a virus
Hello,
I have created a multipart message using cfmail and cfmailpart, there's a text part and an html part that includes inline images. The messages are being caught by our email antivirus (declude). The antivirus message states that the message contains "the [Outlook 'Space Gap' Vulnerability]"
The vulnerability can be defined as:
This vulnerability occurs when there is a space in one of the MIME
headers where there is not normally a space (such as "Content-Type
:" instead of "Content-Type:"). This is not RFC-compliant, but
Outlook will treat it as valid and be able to see a virus that
virus scanners will not usually see. There is no legitimate reason
for an email to be formed like this.
When I look at the source of the email message, it appears that coldfusion does the following to the mime headers:
Mime-Version: 1.0
Content-Type: multipart/related;
boundary="----=_Part_401935_27323735.1170444413143"
I think the newline and tab before the boundry declaration are creating the problem.
Any help would be much apprecitated.
thanks.
I have created a multipart message using cfmail and cfmailpart, there's a text part and an html part that includes inline images. The messages are being caught by our email antivirus (declude). The antivirus message states that the message contains "the [Outlook 'Space Gap' Vulnerability]"
The vulnerability can be defined as:
This vulnerability occurs when there is a space in one of the MIME
headers where there is not normally a space (such as "Content-Type
:" instead of "Content-Type:"). This is not RFC-compliant, but
Outlook will treat it as valid and be able to see a virus that
virus scanners will not usually see. There is no legitimate reason
for an email to be formed like this.
When I look at the source of the email message, it appears that coldfusion does the following to the mime headers:
Mime-Version: 1.0
Content-Type: multipart/related;
boundary="----=_Part_401935_27323735.1170444413143"
I think the newline and tab before the boundry declaration are creating the problem.
Any help would be much apprecitated.
thanks.
AdChoices