Clearswift MIMEsweeper 5.0.5, when it has been upgraded from MAILsweeper for SMTP version 4.3 or MAILsweeper Business Suite I or II, allows remote attackers to bypass scanning by including encrypted data in a mail message, which causes the message to be marked as "Clean" instead of "Encrypted".
References
Configurations
Configuration 1 (hide)
|
History
20 Nov 2024, 23:54
Type | Values Removed | Values Added |
---|---|---|
References | () http://download.mimesweeper.com/www/TechnicalDocumentation/MSWSMTP505UpdateReadMe.htm - | |
References | () http://secunia.com/advisories/13160 - Vendor Advisory | |
References | () http://www.osvdb.org/11602 - | |
References | () http://www.securityfocus.com/bid/11669 - | |
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/18035 - |
Information
Published : 2004-12-31 05:00
Updated : 2024-11-20 23:54
NVD link : CVE-2004-2703
Mitre link : CVE-2004-2703
CVE.ORG link : CVE-2004-2703
JSON object : View
Products Affected
clearswift
- mailsweeper_business_suite_i
- mailsweeper_for_smtp
- mimesweeper_for_web
- mailsweeper_business_suite_ii
CWE
CWE-310
Cryptographic Issues