Bypassing Policy in Clearswift MAILsweeper before 4.3.15 via RAR 3.20 Encoded Files

Bypassing Policy in Clearswift MAILsweeper before 4.3.15 via RAR 3.20 Encoded Files

CVE-2003-0928 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Clearswift MAILsweeper before 4.3.15 does not properly detect and filter RAR 3.20 encoded files, which allows remote attackers to bypass intended policy.

Learn more about our Web Application Penetration Testing UK.