CVE-2003-1330

Clearswift MAILsweeper for SMTP 4.3.6 SP1 does not execute custom "on strip unsuccessful" hooks, which allows remote attackers to bypass e-mail attachment filtering policies via an attachment that MAILsweeper can detect but not remove.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:microsoft:all_windows:*:*:*:*:*:*:*:*
cpe:2.3:a:clearswift_limited:mailsweeper:4.3.6_sp1:*:smtp:*:*:*:*:*

History

20 Nov 2024, 23:46

Type Values Removed Values Added
References () http://www.mimesweeper.com/download/bin/Patches/MAILsweeper_Patches_301_ReadMe.htm - () http://www.mimesweeper.com/download/bin/Patches/MAILsweeper_Patches_301_ReadMe.htm -
References () http://www.securityfocus.com/bid/7226 - () http://www.securityfocus.com/bid/7226 -
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/11745 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/11745 -

Information

Published : 2003-12-31 05:00

Updated : 2024-11-20 23:46


NVD link : CVE-2003-1330

Mitre link : CVE-2003-1330

CVE.ORG link : CVE-2003-1330


JSON object : View

Products Affected

clearswift_limited

  • mailsweeper

microsoft

  • all_windows