CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0CVE-2006-3522
https://notcve.org/view.php?id=CVE-2006-3522
12 Jul 2006 — Cross-site scripting (XSS) vulnerability in Clearswift MIMEsweeper for Web before 5.1.15 Hotfix allows remote attackers to inject arbitrary web script or HTML via the URL, which is reflected back in an error message when trying to access a blocked web site. Vulnerabilidad de secuencias de comandos en sitios cruzados (XSS) en Clearswift MIMEsweeper for Web versiones anteriores a 5.1.15 Hotfix, permite a atacantes remotos inyectar secuencias de comandos web o HTML de su elección a través de la URL, se ve refl... • http://download.mimesweeper.com/www/TechnicalDocumentation/WebReadMeHotfix5115.htm •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2006-3523
https://notcve.org/view.php?id=CVE-2006-3523
12 Jul 2006 — Clearswift MIMEsweeper for Web before 5.1.15 Hotfix allows remote attackers to cause a denial of service (crash) via an encrypted archived .RAR file, which triggers a scan error and causes the Web Policy Engine service to terminate. Clearswift MIMEsweeper para Web antes de 5.1.15 Hotfix permite a atacantes remotos provocar una denegación de servicio (caída) a través de un archivo .RAR encriptado archivado, lo que dispara un error de escaneado y provoca que termine el servicio de Web Policy Engine (Motor de ... • http://download.mimesweeper.com/www/TechnicalDocumentation/WebReadMeHotfix5115.htm •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2006-3215
https://notcve.org/view.php?id=CVE-2006-3215
24 Jun 2006 — Clearswift MAILsweeper for SMTP before 4.3.20 and MAILsweeper for Exchange before 4.3.20 allows remote attackers to bypass the "text analysis", possibly bypassing SPAM and other filters, by sending an e-mail specifying a non-existent or unrecognized character set. Clearswift MAILsweeper para SMTP anterior a v4.3.20 y MAILsweeper para Exchange anterior a anterior a v4.3.20 permite a atacantes remotos evitar el "text analysis", posiblemente evitando SPAM y otros filtros, mediante el envió de un e-mail especif... • http://download.mimesweeper.com/www/TechnicalDocumentation/ReadMe_MSW_4%2C3%2C20.htm •
CVSS: 7.5EPSS: 1%CPEs: 2EXPL: 0CVE-2006-3216
https://notcve.org/view.php?id=CVE-2006-3216
24 Jun 2006 — Clearswift MAILsweeper for SMTP before 4.3.20 and MAILsweeper for Exchange before 4.3.20 allows remote attackers to cause a denial of service via (1) non-ASCII characters in a reverse DNS lookup result from a Received header, which leads to a Receiver service stop, and (2) unspecified vectors involving malformed messages, which causes "unpredictable behavior" that prevents the Security service from processing more messages. Clearswift MAILsweeper para SMTP anterior a v4.3.20 y MAILsweeper para Exchange ante... • http://download.mimesweeper.com/www/TechnicalDocumentation/ReadMe_MSW_4%2C3%2C20.htm •
CVSS: 9.1EPSS: 0%CPEs: 7EXPL: 1CVE-2005-4526
https://notcve.org/view.php?id=CVE-2005-4526
28 Dec 2005 — Clearswift MIMEsweeper For Web (a.k.a. WEBsweeper) 4.0 through 5.1 allows remote attackers to bypass filtering via a URL that does not include a .exe extension but returns an executable file. • http://www.digitalarmaments.com/2005161283546323.html •
CVSS: 6.5EPSS: 0%CPEs: 14EXPL: 0CVE-2004-2328
https://notcve.org/view.php?id=CVE-2004-2328
31 Dec 2004 — Clearswift MAILsweeper for SMTP before 4.3_13 allows remote attackers to cause a denial of service (infinite loop) via an e-mail with a crafted RAR archive attached. • http://www.osvdb.org/3742 •
CVSS: 7.5EPSS: 0%CPEs: 4EXPL: 0CVE-2004-2703
https://notcve.org/view.php?id=CVE-2004-2703
31 Dec 2004 — Clearswift MIMEsweeper 5.0.5, when it has been upgraded from MAILsweeper for SMTP version 4.3 or MAILsweeper Business Suite I or II, allows remote attackers to bypass scanning by including encrypted data in a mail message, which causes the message to be marked as "Clean" instead of "Encrypted". • http://download.mimesweeper.com/www/TechnicalDocumentation/MSWSMTP505UpdateReadMe.htm • CWE-310: Cryptographic Issues •
CVSS: 7.5EPSS: 0%CPEs: 22EXPL: 0CVE-2003-1014
https://notcve.org/view.php?id=CVE-2003-1014
24 Sep 2004 — Multiple content security gateway and antivirus products allow remote attackers to bypass content restrictions via MIME messages that use multiple MIME fields with the same name, which may be interpreted differently by mail clients. Múltiples pasarelas de seguridad de contenidos y antivirus pueden permitir a atacantes remotos saltarse restricciones de contenido mediante mensajes MIME que usan múltiples campos MIME con el mismo nombre, lo que puede ser interpretado de manera distinta por clientes de correo. • http://marc.info/?l=bugtraq&m=109517732328759&w=2 •
CVSS: 7.5EPSS: 0%CPEs: 22EXPL: 0CVE-2003-1015
https://notcve.org/view.php?id=CVE-2003-1015
24 Sep 2004 — Multiple content security gateway and antivirus products allow remote attackers to bypass content restrictions via MIME messages that use whitespace in an unusual fashion, which may be interpreted differently by mail clients. Múltiples productos de pasarelas de seguridad de contenidos y antivirus pueden permitir a atacantes remotos saltarse restricciones de contenido mediante mensajes MIME que usan espacios en blanco de manera inusual, lo que puede ser interpretado diferentemente por clientes de correo. • http://marc.info/?l=bugtraq&m=109525252118936&w=2 •
CVSS: 7.5EPSS: 0%CPEs: 22EXPL: 0CVE-2003-1016
https://notcve.org/view.php?id=CVE-2003-1016
24 Sep 2004 — Multiple content security gateway and antivirus products allow remote attackers to bypass content restrictions via MIME messages that use malformed quoting in MIME headers, parameters, and values, including (1) fields that should not be quoted, (2) duplicate quotes, or (3) missing leading or trailing quote characters, which may be interpreted differently by mail clients. Múltiples productos de pasarelas de seguridad de contenidos y antivirus pueden permitir a atacantes remotos saltarse restricciones de cont... • http://marc.info/?l=bugtraq&m=109521027007616&w=2 •