10 results (0.009 seconds)

CVSS: 4.3EPSS: 5%CPEs: 4EXPL: 0

Clearswift MIMEsweeper 5.0.5, when it has been upgraded from MAILsweeper for SMTP version 4.3 or MAILsweeper Business Suite I or II, allows remote attackers to bypass scanning by including encrypted data in a mail message, which causes the message to be marked as "Clean" instead of "Encrypted". • http://download.mimesweeper.com/www/TechnicalDocumentation/MSWSMTP505UpdateReadMe.htm http://secunia.com/advisories/13160 http://www.osvdb.org/11602 http://www.securityfocus.com/bid/11669 https://exchange.xforce.ibmcloud.com/vulnerabilities/18035 • CWE-310: Cryptographic Issues •

CVSS: 5.0EPSS: 1%CPEs: 14EXPL: 0

Clearswift MAILsweeper for SMTP before 4.3_13 allows remote attackers to cause a denial of service (infinite loop) via an e-mail with a crafted RAR archive attached. • http://www.osvdb.org/3742 http://www.secunia.com/advisories/10732 http://www.securityfocus.com/bid/9556 https://exchange.xforce.ibmcloud.com/vulnerabilities/14979 •

CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0

Clearswift MAILsweeper before 4.3.15 does not properly detect and filter RAR 3.20 encoded files, which allows remote attackers to bypass intended policy. Clearswift MAILsweepe anteriores a 4.3.15 no detecta y filtra adecuadamente ficheros codificados RAR 3.20, lo que permite a atacantes remotos saltarse la política pretendida. • http://marc.info/?l=bugtraq&m=109241692108678&w=2 http://www.corsaire.com/advisories/c030807-001.txt •

CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0

Clearswift MAILsweeper before 4.3.15 does not properly detect filenames in BinHex (HQX) encoded files, which allows remote attackers to bypass intended policy. Clearswift MAILsweeper anteriores a 4.3.15 no detecta nombres de fichero en ficheros codificados BinHex (HQX), lo que permite a atacantes remotos sortear la política pretendida. • http://marc.info/?l=bugtraq&m=109241692108678&w=2 http://www.corsaire.com/advisories/c030807-001.txt •

CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0

Clearswift MAILsweeper before 4.3.15 does not properly detect and filter ZIP 6.0 encoded files, which allows remote attackers to bypass intended policy. Cleanswift MAILsweeper anteriores a 4.3.15 no detectan y filtran de manera adecuada ficheros codificados ZIP 6.0, lo que permite a atacantes remotos saltarse la política pretendida. • http://marc.info/?l=bugtraq&m=109241692108678&w=2 http://www.corsaire.com/advisories/c030807-001.txt •