Clearswift MAILsweeper For SMTP RAR Archive Denial Of Service Vulnerability
BID:9556
Info
Clearswift MAILsweeper For SMTP RAR Archive Denial Of Service Vulnerability
| Bugtraq ID: | 9556 |
| Class: | Failure to Handle Exceptional Conditions |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Jan 29 2004 12:00AM |
| Updated: | Jan 29 2004 12:00AM |
| Credit: | The vendor announced this vulnerability. |
| Vulnerable: |
Clearswift MailSweeper 4.3.13 Clearswift MailSweeper 4.3.11 Clearswift MailSweeper 4.3.10 Clearswift MailSweeper 4.3.8 Clearswift MailSweeper 4.3.7 Clearswift MailSweeper 4.3.6 SP1 Clearswift MailSweeper 4.3.6 Clearswift MailSweeper 4.3.5 Clearswift MailSweeper 4.3.4 Clearswift MailSweeper 4.3.3 Clearswift MailSweeper 4.3 Clearswift MailSweeper 4.2 Clearswift MailSweeper 4.1 Clearswift MailSweeper 4.0 |
| Not Vulnerable: | |
Discussion
Clearswift MAILsweeper For SMTP RAR Archive Denial Of Service Vulnerability
MAILsweeper has been reported prone to a remote denial of service vulnerability. The issue presents itself when MAILsweeper encounters an email that has a malicious RAR archive attached.
MAILsweeper has been reported prone to a remote denial of service vulnerability. The issue presents itself when MAILsweeper encounters an email that has a malicious RAR archive attached.
Exploit / POC
Clearswift MAILsweeper For SMTP RAR Archive Denial Of Service Vulnerability
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Solution / Fix
Clearswift MAILsweeper For SMTP RAR Archive Denial Of Service Vulnerability
Solution:
The vendor has released a patch to address this issue. Customers are advised to obtain the appropriate patch from the Clearswift Limited Web site.
Clearswift MailSweeper 4.3.13
Solution:
The vendor has released a patch to address this issue. Customers are advised to obtain the appropriate patch from the Clearswift Limited Web site.
Clearswift MailSweeper 4.3.13
-
Clearswift MAILsweeper for SMTP
http://www.clearswift.com/download/SQL/downloadList.asp?productID=397
References
Clearswift MAILsweeper For SMTP RAR Archive Denial Of Service Vulnerability
References:
References:
- Home Page (Clearswift)