Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-3215

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2006-3215
Last Modified 07 Mar 2011 09:38:06
Published 23 Jun 2006 09:06:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-3215

Summary

Clearswift MAILsweeper for SMTP before 4.3.20 and MAILsweeper for Exchange before 4.3.20 allows remote attackers to bypass the "text analysis", possibly bypassing SPAM and other filters, by sending an e-mail specifying a non-existent or unrecognized character set.

Vulnerable Systems

Application

  • Clearswift Mailsweeper For Exchange 4.3.19

  • Clearswift Mailsweeper For Smtp 4.3.19


References

BID - 18584

SECUNIA - 20756

CONFIRM - http://download.mimesweeper.com/www/TechnicalDocumentation/ReadMe_MSW_4,3,20.htm

VUPEN - ADV-2006-2473

XF - mailsweeper-charcter-set-security-bypass(27301)

OSVDB - 26737


Last Updated: 27 May 2016 10:42:56