43 matches found
EUVD-2006-3518
Malware in sbrugna...
EUVD-2004-2693
Malware in sbrugna...
EUVD-2005-4521
Malware in sbrugna...
EUVD-2004-1709
Malware in sbrugna...
EUVD-2006-3517
Malware in sbrugna...
clearswift mimesweeper for web 4.0/5.0 - Directory Traversal vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/10918/info Clearswift MIMEsweeper For Web is reported prone to a directory traversal vulnerability due to insufficient sanitization of user-supplied data. To carry out an attack an attacker may specify a relative path to ...
MIMEsweeper For SMTP - Multiple Cross-Site Scripting Vulnerabilities
MIMEsweeper For SMTP - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/58012/info MIMEsweeper for SMTP is prone to multiple cross-site scripting vulnerabilities because it fails to sanitize user-supplied input. An attacker may leverage these issues to execu...
MIMEsweeper For SMTP - Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/58012/info MIMEsweeper for SMTP is prone to multiple cross-site scripting vulnerabilities because it fails to sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in th...
MIMEsweeper For SMTP 5.5 Cross Site Scripting
Application: MIMEsweeper for SMTP 5.5 5.2, 5.3, 5.4 and probably earlier versions Personal Message Manager PMM Vendor: Clearswift Ltd Vendor URL: http://www.clearswift.com/ Category: Reflective XSS Google dork: inurl:/MSWPMM/ Discovered by: Anastasios Monachos secuid0 - anastasiosmatgmaildotcom...
Design/Logic Flaw
F-Secure Internet Security 2010 and earlier; Anti-Virus for Microsoft Exchange 9 and earlier, and for MIMEsweeper 5.61 and earlier; Internet Gatekeeper for Windows 6.61 and earlier, and for Linux 4.02 and earlier; Anti-Virus 2010 and earlier; Home Server Security 2009; Protection Service for...
CVE-2010-1425
Summary: CVE-2010-1425 affects F-Secure and related antivirus products, whose scanning engines fail to detect malware in specially crafted 7Z, GZIP, CAB, and RAR archives. The issue enables remote malware delivery by archive content evasion, impacting several F-Secure offerings (including Interne...
F-Secure Products Malware Detection Bypass Vulnerability (Windows)
This host is installed with F-Secure Product and is prone to Malware Detection Bypass Vulnerability. OpenVAS Vulnerability Test $Id: secpodfsecureprdtssecbypassvulnwin.nasl 5369 2017-02-20 14:48:07Z cfi $ F-Secure Products Malware Detection Bypass Vulnerability Windows Authors: Sharath S Copyrigh...
Errata: [TZO-2009-1] Avira Antivir - RAR - Division by Zero & Null Pointer Dereference
Errata : Products listed but not affected : AVIRA WebProtector for KEN! - Reason: Does not use the Scan Engine Avira AntiVir Mobile - Reason: Does not use the same AV Engine Avira requested the following products to be removed from the list, for the reason that they are license models and not...
CVE-2004-2703
Clearswift MIMEsweeper 5.0.5, when it has been upgraded from MAILsweeper for SMTP version 4.3 or MAILsweeper Business Suite I or II, allows remote attackers to bypass scanning by including encrypted data in a mail message, which causes the message to be marked as "Clean" instead of "Encrypted"...
CVE-2004-2703
The CVE-2004-2703 entry concerns Clearswift MIMEsweeper 5.0.5, upgraded from MAILsweeper SMTP versions, where remote data that is encrypted within a mail message can bypass scanning and be marked as Clean rather than Encrypted. This describes the affected product/function (MIMEsweeper 5.0.5 after...
CVE-2006-3523
Clearswift MIMEsweeper for Web before 5.1.15 Hotfix allows remote attackers to cause a denial of service crash via an encrypted archived .RAR file, which triggers a scan error and causes the Web Policy Engine service to terminate...
CVE-2006-3522
Cross-site scripting XSS vulnerability in Clearswift MIMEsweeper for Web before 5.1.15 Hotfix allows remote attackers to inject arbitrary web script or HTML via the URL, which is reflected back in an error message when trying to access a blocked web site...
CVE-2006-3522
Cross-site scripting XSS vulnerability in Clearswift MIMEsweeper for Web before 5.1.15 Hotfix allows remote attackers to inject arbitrary web script or HTML via the URL, which is reflected back in an error message when trying to access a blocked web site...
CVE-2006-3522
CVE-2006-3522 affects Clearswift MIMEsweeper for Web (pre-5.1.15 Hotfix). The issue is a cross-site scripting (XSS) vulnerability where attacker-supplied input in a URL is reflected back in an error message when accessing a blocked site, enabling remote.script injection. The root cause is an impr...
CVE-2006-3523
Clearswift MIMEsweeper for Web before 5.1.15 Hotfix allows remote attackers to cause a denial of service crash via an encrypted archived .RAR file, which triggers a scan error and causes the Web Policy Engine service to terminate...