Clearswift Limited: >> Mailsweeper Security Vulnerabilities
Clearswift MAILsweeper for SMTP 4.3.6 SP1 does not execute custom "on strip unsuccessful" hooks, which allows remote attackers to bypass e-mail attachment filtering policies via an attachment that MAILsweeper can detect but not remove.
CVSS Score
5.0
EPSS Score
0.002
Published
2003-12-31
The File Blocker feature in Clearswift MAILsweeper for SMTP 4.2 allows remote attackers to bypass e-mail attachment filtering policies via a modified name in a Content-Type header.
CVSS Score
7.5
EPSS Score
0.002
Published
2001-12-31