Vulnerability Description
Clearswift MAILsweeper for SMTP before 4.3.20 and MAILsweeper for Exchange before 4.3.20 allows remote attackers to bypass the "text analysis", possibly bypassing SPAM and other filters, by sending an e-mail specifying a non-existent or unrecognized character set.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Clearswift | Mailsweeper For Exchange | <= 4.3.19 |
| Clearswift | Mailsweeper For Smtp | <= 4.3.19 |
References
- http://download.mimesweeper.com/www/TechnicalDocumentation/ReadMe_MSW_4%2C3%2C20
- http://secunia.com/advisories/20756PatchVendor Advisory
- http://www.osvdb.org/26737
- http://www.securityfocus.com/bid/18584Patch
- http://www.vupen.com/english/advisories/2006/2473
- https://exchange.xforce.ibmcloud.com/vulnerabilities/27301
- http://download.mimesweeper.com/www/TechnicalDocumentation/ReadMe_MSW_4%2C3%2C20
- http://secunia.com/advisories/20756PatchVendor Advisory
- http://www.osvdb.org/26737
- http://www.securityfocus.com/bid/18584Patch
- http://www.vupen.com/english/advisories/2006/2473
- https://exchange.xforce.ibmcloud.com/vulnerabilities/27301
FAQ
What is CVE-2006-3215?
CVE-2006-3215 is a vulnerability with a CVSS score of 7.5 (HIGH). Clearswift MAILsweeper for SMTP before 4.3.20 and MAILsweeper for Exchange before 4.3.20 allows remote attackers to bypass the "text analysis", possibly bypassing SPAM and other filters, by sending an...
How severe is CVE-2006-3215?
CVE-2006-3215 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-3215?
Check the references section above for vendor advisories and patch information. Affected products include: Clearswift Mailsweeper For Exchange, Clearswift Mailsweeper For Smtp.