Lucene search
K

69 matches found

Tenable Nessus
Tenable Nessus
added 2004/08/23 12:0 a.m.43 views

MAILsweeper Archive File Filtering Bypass

The remote host is running MAILsweeper - a content security solution for SMTP. According to its banner, the remote version of MAILsweeper may allow an attacker to bypass the archive filtering settings of the remote server by sending an archive in the format 7ZIP, ACE, ARC, BH, BZIP2, HAP, IMG, PA...

7.5CVSS5.5AI score0.01993EPSS
Exploits0References4
CVE
CVE
added 2004/08/18 4:0 a.m.61 views

CVE-2003-0928

CVE-2003-0928 concerns Clearswift MAILsweeper prior to 4.3.15. The issue is that the product does not properly detect and filter RAR 3.20 encoded files, allowing remote attackers to bypass the product’s policy enforcement. The core impact is the circumvention of policy controls, enabling content ...

7.5CVSS7.2AI score0.01435EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2004/08/18 4:0 a.m.52 views

CVE-2003-0930

CVE-2003-0930 affects Clearswift MAILsweeper prior to version 4.3.15 and arises from incorrect detection of filenames in BinHex (HQX) encoded files, allowing remote attackers to bypass the product’s policy enforcement. The vulnerability is exploitable remotely by sending HQX-encoded content, with...

7.5CVSS6.7AI score0.01328EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2004/08/18 4:0 a.m.53 views

CVE-2003-0929

The provided data shows a concrete vulnerability: Clearswift MAILsweeper before version 4.3.15 fails to properly detect and filter ZIP 6.0 encoded files, allowing remote attackers to bypass policy. Affected product: MAILsweeper (SMTP) pre-4.3.15. Impact per sources: partial confidentiality, integ...

7.5CVSS6.8AI score0.01993EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2004/08/18 4:0 a.m.18 views

CVE-2003-0929

Clearswift MAILsweeper before 4.3.15 does not properly detect and filter ZIP 6.0 encoded files, which allows remote attackers to bypass intended policy...

6.7AI score0.01993EPSS
Exploits0References2
Cvelist
Cvelist
added 2004/08/18 4:0 a.m.17 views

CVE-2003-0928

Clearswift MAILsweeper before 4.3.15 does not properly detect and filter RAR 3.20 encoded files, which allows remote attackers to bypass intended policy...

6.8AI score0.01435EPSS
Exploits0References2
Cvelist
Cvelist
added 2004/08/18 4:0 a.m.17 views

CVE-2003-0930

Clearswift MAILsweeper before 4.3.15 does not properly detect filenames in BinHex HQX encoded files, which allows remote attackers to bypass intended policy...

6.7AI score0.01328EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2004/08/18 12:0 a.m.19 views

Clearswift MAILsweeper for SMTP < 4.3.15 Multiple Vulnerabilities

Binary data 2048.prm...

7.8CVSS7.3AI score0.03071EPSS
Exploits0References8
NVD
NVD
added 2003/12/31 5:0 a.m.13 views

CVE-2003-1154

MAILsweeper for SMTP 4.3 allows remote attackers to bypass virus protection via a mail message with a malformed zip attachment, as exploited by certain MIMAIL virus variants...

7.5CVSS6.6AI score0.01683EPSS
Exploits0References5
NVD
NVD
added 2003/12/31 5:0 a.m.19 views

CVE-2003-1477

MAILsweeper for SMTP 4.3.6 and 4.3.7 allows remote attackers to cause a denial of service CPU consumption via a PowerPoint attachment that either 1 is corrupt or 2 contains "embedded objects."...

7.8CVSS6.7AI score0.01602EPSS
Exploits0References3
NVD
NVD
added 2003/12/31 5:0 a.m.14 views

CVE-2003-1330

Clearswift MAILsweeper for SMTP 4.3.6 SP1 does not execute custom "on strip unsuccessful" hooks, which allows remote attackers to bypass e-mail attachment filtering policies via an attachment that MAILsweeper can detect but not remove...

5CVSS7AI score0.01414EPSS
Exploits0References3
NVD
NVD
added 2003/12/31 5:0 a.m.12 views

CVE-2003-1485

Clearswift MAILsweeper 4.0 through 4.3.7 allows remote attackers to bypass filtering via a file attachment that contains "multiple extensions combined with large blocks of white space."...

5CVSS6.7AI score0.0126EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2003/05/27 12:0 a.m.48 views

MAILsweeper for SMTP PowerPoint Document Processing DoS

The remote host is running MAILsweeper - a content security solution for SMTP. According to its banner, the remote version of MAILsweeper consumes all available CPU resources when processing a malformed PowerPoint file, causing the server to become non-responsive. A remote attacker could exploit...

7.8CVSS5.6AI score0.01602EPSS
Exploits0References2
NVD
NVD
added 2003/03/18 5:0 a.m.14 views

CVE-2003-0121

Clearswift MAILsweeper 4.x allows remote attackers to bypass attachment detection via an attachment that does not specify a MIME-Version header field, which is processed by some mail clients...

7.5CVSS6.7AI score0.03071EPSS
Exploits0References3
CVE
CVE
added 2003/03/13 5:0 a.m.51 views

CVE-2003-0121

CVE-2003-0121 affects Clearswift MAILsweeper 4.x. The issue is a MIME-attachment evasion where an attachment lacking a MIME-Version header can bypass detection by some mail clients, allowing the attacker to pass the attachment unrecognized. The NVD entry notes a network-path attack with low compl...

7.5CVSS6.7AI score0.03071EPSS
Exploits0References3Affected Software1
securityvulns
securityvulns
added 2003/03/12 12:0 a.m.34 views

Clearswift MAILsweeper protection bypass

If MIME-Version header is missed or binary encoding is used attachments are not recognized...

2.4AI score
Exploits0References2Affected Software1
securityvulns
securityvulns
added 2003/03/12 12:0 a.m.30 views

Re: Corsaire Security Advisory - Clearswift MAILsweeper MIME attachme nt evasion issue

!-- Step 2: Now create a text file that will be used to hold the MIME encoded attachment. Start notepad or another text editor, and paste in: MIME-Version: 1.0 Content-Location:file:///executable.exe Content-Transfer-Encoding: base64 TVp0AQIAAAAgAAgA//8YAIAAAAAQAAIAHgAAAAEAAAAAA...

0.3AI score
Exploits0
securityvulns
securityvulns
added 2003/03/09 12:0 a.m.36 views

Corsaire Security Advisory - Clearswift MAILsweeper MIME attachme nt evasion issue

-- Corsaire Security Advisory -- Title: Clearswift MAILsweeper MIME attachment evasion issue Date: 03.03.03 Application: Clearswift MAILsweeper 4.x Environment: Windows NT 4.0, Windows 2000, Author: Martin O'Neal [email protected] Audience: General distribution -- Scope -- The aim of this...

7.5CVSS6AI score0.03071EPSS
Exploits0
exploitpack
exploitpack
added 2003/03/07 12:0 a.m.15 views

Clearswift MAILsweeper 4.x - MIME Attachment Filter Bypass

Clearswift MAILsweeper 4.x - MIME Attachment Filter Bypass source: https://www.securityfocus.com/bid/7044/info Clearswift MailSweeper does not properly process certain malformed MIME email message attachments. If the attachment does not contain a MIME-Version field, MailSweeper does not recognize...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2003/03/07 12:0 a.m.41 views

Clearswift MAILsweeper 4.x - MIME Attachment Filter Bypass

source: https://www.securityfocus.com/bid/7044/info Clearswift MailSweeper does not properly process certain malformed MIME email message attachments. If the attachment does not contain a MIME-Version field, MailSweeper does not recognize the attachment as being an executable type. MailSweeper...

7.4AI score
Exploits0
Rows per page
Query Builder