1. Home
  2. CVE Database
  3. CVE-2004-2703
MEDIUM · 4.3

CVE-2004-2703

Clearswift MIMEsweeper 5.0.5, when it has been upgraded from MAILsweeper for SMTP version 4.3 or MAILsweeper Business Suite I or II, allows remote attackers to bypass scanning by including encrypted d...

Vulnerability Description

Clearswift MIMEsweeper 5.0.5, when it has been upgraded from MAILsweeper for SMTP version 4.3 or MAILsweeper Business Suite I or II, allows remote attackers to bypass scanning by including encrypted data in a mail message, which causes the message to be marked as "Clean" instead of "Encrypted".

CVSS Score

4.3

MEDIUM

AV:N/AC:M/Au:N/C:N/I:P/A:N
Confidentiality
NONE
Integrity
PARTIAL
Availability
NONE

Affected Products

VendorProductVersions
ClearswiftMailsweeper Business Suite IAll versions
ClearswiftMailsweeper Business Suite IiAll versions
ClearswiftMailsweeper For Smtp4.3
ClearswiftMimesweeper For Web5.0.5

Related Weaknesses (CWE)

CWE-310

References

FAQ

What is CVE-2004-2703?

CVE-2004-2703 is a vulnerability with a CVSS score of 4.3 (MEDIUM). Clearswift MIMEsweeper 5.0.5, when it has been upgraded from MAILsweeper for SMTP version 4.3 or MAILsweeper Business Suite I or II, allows remote attackers to bypass scanning by including encrypted d...

How severe is CVE-2004-2703?

CVE-2004-2703 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2004-2703?

Check the references section above for vendor advisories and patch information. Affected products include: Clearswift Mailsweeper Business Suite I, Clearswift Mailsweeper Business Suite Ii, Clearswift Mailsweeper For Smtp, Clearswift Mimesweeper For Web.