This vulnerability occurs when an E-mail contains a single 'CR' character within the E-mail headers (as opposed to a 'CR' followed by an 'LF', which is used to end a line in SMTP). Outlook can treat this as the end of the headers, which would allow Outlook to see a virus that was embedded in the headers. RFC2822 2.2 says that CR and LF characters cannot appear alone in the headers. Also, there is no legitimate reason for an E-mail to contain a lone 'CR' in the headers.

Because this is from a trusted source and you can allow this sender to bypass this check by adding this line to your \Declude\virus.cfg this option instructs Declude EVA to allow vulnerabilities from a specific E-mail address or domain.

ALLOWVULNERABILITIESFROM   example@example.com