Multiple vulnerabilities have been identified in MAILsweeper for SMTP and MIMEsweeper for Exchange, which could be exploited by attackers to cause a denial of service or bypass security restrictions.

The first issue is due to an error when handling a messages that specify a non-existent character set, which could be exploited to bypass text analysis.

The second flaw is due to an error in the Receiver service that does not properly handle reverse DNS lookups when the "Received" header in a message includes non-ASCII characters, which could cause the service to stop processing messages.

The third vulnerability is due to an error in the Security service that does not properly handle malformed messages, which could cause the service to stop processing messages.

Affected Products

MAILsweeper for SMTP version 4.3.19 and prior
MIMEsweeper for Exchange version 4.3.19 and prior

Solution

Upgrade to version 4.3.20 :
http://www.mimesweeper.com/support/msw/patch.aspx

References

http://www.vupen.com/english/advisories/2006/2473
http://download.mimesweeper.com/www/TechnicalDocumentation/ReadMe_MSW_4,3,20.htm

Credits

Vulnerabilities reported by the vendor

Changelog

2006-06-21 : Initial release

Feedback

If you have additional information or corrections for this security advisory please submit them via our contact form.