Search

Find a vulnerability

Search criteria Use this form to refine search results.
Full-text search supports keyword queries with ranking and filtering.
You can combine vendor, product, and sources to narrow results.
Enable “Apply ordering” to sort by date instead of relevance.

    1 vulnerability by ProofPoint Email Protection System

    AVID-2023-V009

    Vulnerability from avid – Published: 2023-03-31 – Updated: 2023-03-31 ATLAS Case Study
    Summary
    Proof Pudding (CVE-2019-20634) is a code repository that describes how ML researchers evaded ProofPoint's email protection system by first building a copy-cat email protection ML model, and using the insights to bypass the live system. More specifically, the insights allowed researchers to craft malicious emails that received preferable scores, going undetected by the system. Each word in an email is scored numerically based on multiple variables and if the overall score of the email is too low, ProofPoint will output an error, labeling it as SPAM.
    Risk domain
    Security
    SEP view
    S0403: Adversarial Example
    Lifecycle
    L06: Deployment
    Organisations
    Affected artifacts
    Artifact Type
    ProofPoint Email Protection System System
    References
    URL Label
    https://atlas.mitre.org/studies/AML.CS0008 ProofPoint Evasion
    https://nvd.nist.gov/vuln/detail/CVE-2019-20634 National Vulnerability Database entry for CVE-2019-20634
    https://github.com/moohax/Talks/blob/master/slide… 2019 DerbyCon presentation "42: The answer to life, the universe, and everything offensive security"
    https://github.com/moohax/Proof-Pudding Proof Pudding (CVE-2019-20634) Implementation on GitHub
    https://www.youtube.com/watch?v=CsvkYoxtexQ&ab_ch… 2019 DerbyCon video presentation "42: The answer to life, the universe, and everything offensive security"

    {
      "affects": {
        "artifacts": [
          {
            "name": "ProofPoint Email Protection System",
            "type": "System"
          }
        ],
        "deployer": [
          "ProofPoint Email Protection System"
        ],
        "developer": []
      },
      "credit": null,
      "data_type": "AVID",
      "data_version": "0.2",
      "description": {
        "lang": "eng",
        "value": "Proof Pudding (CVE-2019-20634) is a code repository that describes how ML researchers evaded ProofPoint\u0027s email protection system by first building a copy-cat email protection ML model, and using the insights to bypass the live system. More specifically, the insights allowed researchers to craft malicious emails that received preferable scores, going undetected by the system. Each word in an email is scored numerically based on multiple variables and if the overall score of the email is too low, ProofPoint will output an error, labeling it as SPAM."
      },
      "impact": {
        "avid": {
          "lifecycle_view": [
            "L06: Deployment"
          ],
          "risk_domain": [
            "Security"
          ],
          "sep_view": [
            "S0403: Adversarial Example"
          ],
          "taxonomy_version": "0.2"
        }
      },
      "last_modified_date": "2023-03-31",
      "metadata": {
        "vuln_id": "AVID-2023-V009"
      },
      "problemtype": {
        "classof": "ATLAS Case Study",
        "description": {
          "lang": "eng",
          "value": "ProofPoint Evasion"
        },
        "type": "Advisory"
      },
      "published_date": "2023-03-31",
      "references": [
        {
          "label": "ProofPoint Evasion",
          "type": "source",
          "url": "https://atlas.mitre.org/studies/AML.CS0008"
        },
        {
          "label": "National Vulnerability Database entry for CVE-2019-20634",
          "type": "source",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-20634"
        },
        {
          "label": "2019 DerbyCon presentation \"42: The answer to life, the universe, and everything offensive security\"",
          "type": "source",
          "url": "https://github.com/moohax/Talks/blob/master/slides/DerbyCon19.pdf"
        },
        {
          "label": "Proof Pudding (CVE-2019-20634) Implementation on GitHub",
          "type": "source",
          "url": "https://github.com/moohax/Proof-Pudding"
        },
        {
          "label": "2019 DerbyCon video presentation \"42: The answer to life, the universe, and everything offensive security\"",
          "type": "source",
          "url": "https://www.youtube.com/watch?v=CsvkYoxtexQ\u0026ab_channel=AdrianCrenshaw"
        }
      ],
      "reports": null
    }