Vulnerabilities > CVE-2003-1330 - Unspecified vulnerability in Clearswift Limited Mailsweeper 4.3.6Sp1
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Clearswift MAILsweeper for SMTP 4.3.6 SP1 does not execute custom "on strip unsuccessful" hooks, which allows remote attackers to bypass e-mail attachment filtering policies via an attachment that MAILsweeper can detect but not remove.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| OS | 1 | |
| Application | 1 |
References
- http://www.mimesweeper.com/download/bin/Patches/MAILsweeper_Patches_301_ReadMe.htm
- http://www.mimesweeper.com/download/bin/Patches/MAILsweeper_Patches_301_ReadMe.htm
- http://www.securityfocus.com/bid/7226
- http://www.securityfocus.com/bid/7226
- https://exchange.xforce.ibmcloud.com/vulnerabilities/11745
- https://exchange.xforce.ibmcloud.com/vulnerabilities/11745