CVE-2003-0928Mailsweeper vulnerability

4 documents4 sources
Severity
7.5HIGHNVD
EPSS
0.3%
top 45.70%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Clearswift Mailsweeper
Timeline
PublishedSep 28
Latest updateApr 29

Description

Clearswift MAILsweeper before 4.3.15 does not properly detect and filter RAR 3.20 encoded files, which allows remote attackers to bypass intended policy.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-5495-w853-78q6: Clearswift MAILsweeper before 42022-04-29
CVEList
CVE-2003-0928: Clearswift MAILsweeper before 42004-08-18

💥Exploits & PoCs

1
Exploit-DB
EMC AlphaStor Device Manager Opcode 0x75 - Command Injection (Metasploit)2014-09-24
CVE-2003-0928 — Clearswift Mailsweeper vulnerability | cvebase