CVE-2004-2703

Clearswift MIMEsweeper 5.0.5, when it has been upgraded from MAILsweeper for SMTP version 4.3 or MAILsweeper Business Suite I or II, allows remote attackers to bypass scanning by including encrypted data in a mail message, which causes the message to be marked as "Clean" instead of "Encrypted".
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:clearswift:mailsweeper_business_suite_i:*:*:*:*:*:*:*:*
cpe:2.3:a:clearswift:mailsweeper_business_suite_ii:*:*:*:*:*:*:*:*
cpe:2.3:a:clearswift:mailsweeper_for_smtp:4.3:*:*:*:*:*:*:*
cpe:2.3:a:clearswift:mimesweeper_for_web:5.0.5:*:*:*:*:*:*:*

History

20 Nov 2024, 23:54

Type Values Removed Values Added
References () http://download.mimesweeper.com/www/TechnicalDocumentation/MSWSMTP505UpdateReadMe.htm - () http://download.mimesweeper.com/www/TechnicalDocumentation/MSWSMTP505UpdateReadMe.htm -
References () http://secunia.com/advisories/13160 - Vendor Advisory () http://secunia.com/advisories/13160 - Vendor Advisory
References () http://www.osvdb.org/11602 - () http://www.osvdb.org/11602 -
References () http://www.securityfocus.com/bid/11669 - () http://www.securityfocus.com/bid/11669 -
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/18035 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/18035 -

Information

Published : 2004-12-31 05:00

Updated : 2024-11-20 23:54


NVD link : CVE-2004-2703

Mitre link : CVE-2004-2703

CVE.ORG link : CVE-2004-2703


JSON object : View

Products Affected

clearswift

  • mailsweeper_business_suite_i
  • mailsweeper_for_smtp
  • mimesweeper_for_web
  • mailsweeper_business_suite_ii
CWE
CWE-310

Cryptographic Issues