Clearswift MailSweeper Malformed MIME Attachment Filter Bypass Vulnerability

Clearswift MailSweeper Malformed MIME Attachment Filter Bypass Vulnerability

There is no exploit code required. Removing the MIME-Version from an encoded attachment will sufficiently bypass the filter.

The following proof of concept was provided by http-equiv@excite.com <http-equiv@malware.com>:

/data/vulnerabilities/exploits/bin.exe.zip