CVE Tools

clearswift

Security ProductsGBcommercial

24

Cumulative CVEs

11

Monthly snapshots

#7

Peak rank

Top products

mailsweeper for smtp2 mailsweeper business suite i1 mailsweeper business suite ii1

Latest CVEs

The 15 most recently published vulnerabilities affecting clearswift.

CVE-2003-1485Clearswift MAILsweeper 4.0 through 4.3.7 allows remote attackers to bypass filtering via a file attachment that contains "multiple extensions combined with large blocks of white space."5.0Oct 24, 2007
CVE-2003-1477MAILsweeper for SMTP 4.3.6 and 4.3.7 allows remote attackers to cause a denial of service (CPU consumption) via a PowerPoint attachment that either (1) is corrupt or (2) contains "embedded objects."7.8Oct 24, 2007
CVE-2004-2703Clearswift MIMEsweeper 5.0.5, when it has been upgraded from MAILsweeper for SMTP version 4.3 or MAILsweeper Business Suite I or II, allows remote attackers to bypass scanning by including encrypte...4.3Oct 6, 2007
CVE-2006-3523Clearswift MIMEsweeper for Web before 5.1.15 Hotfix allows remote attackers to cause a denial of service (crash) via an encrypted archived .RAR file, which triggers a scan error and causes the Web ...5.0Jul 12, 2006
CVE-2006-3522Cross-site scripting (XSS) vulnerability in Clearswift MIMEsweeper for Web before 5.1.15 Hotfix allows remote attackers to inject arbitrary web script or HTML via the URL, which is reflected back i...4.3Jul 12, 2006
CVE-2006-3216Clearswift MAILsweeper for SMTP before 4.3.20 and MAILsweeper for Exchange before 4.3.20 allows remote attackers to cause a denial of service via (1) non-ASCII characters in a reverse DNS lookup re...5.0Jun 24, 2006
CVE-2006-3215Clearswift MAILsweeper for SMTP before 4.3.20 and MAILsweeper for Exchange before 4.3.20 allows remote attackers to bypass the "text analysis", possibly bypassing SPAM and other filters, by sending...7.5Jun 24, 2006
CVE-2005-4526Clearswift MIMEsweeper For Web (a.k.a. WEBsweeper) 4.0 through 5.1 allows remote attackers to bypass filtering via a URL that does not include a .exe extension but returns an executable file.5.0Dec 28, 2005
CVE-2004-2328Clearswift MAILsweeper for SMTP before 4.3_13 allows remote attackers to cause a denial of service (infinite loop) via an e-mail with a crafted RAR archive attached.5.0Aug 16, 2005
CVE-2003-1154MAILsweeper for SMTP 4.3 allows remote attackers to bypass virus protection via a mail message with a malformed zip attachment, as exploited by certain MIMAIL virus variants.7.5May 10, 2005
CVE-2004-1715Directory traversal vulnerability in MIMEsweeper for Web before 5.0.4 allows remote attackers or local users to read arbitrary files via "..\\", "..\", and similar dot dot sequences in the URL.5.0Feb 26, 2005
CVE-2003-1016Multiple content security gateway and antivirus products allow remote attackers to bypass content restrictions via MIME messages that use malformed quoting in MIME headers, parameters, and values, ...7.5Sep 24, 2004
CVE-2003-1015Multiple content security gateway and antivirus products allow remote attackers to bypass content restrictions via MIME messages that use whitespace in an unusual fashion, which may be interpreted ...7.5Sep 24, 2004
CVE-2004-0162Multiple content security gateway and antivirus products allow remote attackers to bypass content restrictions via MIME encapsulation that uses RFC822 comment fields, which may be interpreted as ot...7.5Sep 24, 2004
CVE-2004-0161Multiple content security gateway and antivirus products allow remote attackers to bypass content restrictions via MIME messages that use RFC2231 encoding, which may be interpreted differently by m...7.5Sep 24, 2004