Clearswift MIMEsweeper For SMTP Encrypted Email Scanner Bypass Vulnerability

A vulnerability has been reported in Clearswift MIMEsweeper that may result in malicious emails bypassing the scanner. This is due to an issue in classifying encrypted emails, causing them to be marked as "clean" instead of being properly flagged as "encrypted".

This issue affects users who have upgraded to MIMEsweeper for SMTP 5.0 from MAILsweeper Business Suite I, MAILsweeper Business Suite II, or MAILsweeper for SMTP version 4.3. Fresh installs of MIMEsweeper for SMTP 5.0 are not affected.


 

Privacy Statement
Copyright 2010, SecurityFocus