5

CVE-2006-3216

Clearswift MAILsweeper for SMTP before 4.3.20 and MAILsweeper for Exchange before 4.3.20 allows remote attackers to cause a denial of service via (1) non-ASCII characters in a reverse DNS lookup result from a Received header, which leads to a Receiver service stop, and (2) unspecified vectors involving malformed messages, which causes "unpredictable behavior" that prevents the Security service from processing more messages.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
ClearswiftMailsweeper For Exchange Version <= 4.3.19
ClearswiftMailsweeper For Smtp Version <= 4.3.19
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 1.82% 0.76
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5 10 2.9
AV:N/AC:L/Au:N/C:N/I:N/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://download.mimesweeper.com/www/TechnicalDocumentation/ReadMe_MSW_4%2C3%2C20.htm
http://secunia.com/advisories/20756
Patch
Vendor Advisory
http://www.securityfocus.com/bid/18584
Patch
http://www.vupen.com/english/advisories/2006/2473
http://www.osvdb.org/26738
http://www.osvdb.org/26739
https://exchange.xforce.ibmcloud.com/vulnerabilities/27303
https://exchange.xforce.ibmcloud.com/vulnerabilities/27305