CVE-2004-2328 | Vulnerability Database | Aqua Security

Clearswift MAILsweeper for SMTP before 4.3_13 allows remote attackers to cause a denial of service (infinite loop) via an e-mail with a crafted RAR archive attached.

Affected Software

Name	Vendor	Start Version	End Version
Mailsweeper	Clearswift	4.0 (including)	4.0 (including)
Mailsweeper	Clearswift	4.1 (including)	4.1 (including)
Mailsweeper	Clearswift	4.2 (including)	4.2 (including)
Mailsweeper	Clearswift	4.3 (including)	4.3 (including)
Mailsweeper	Clearswift	4.3.3 (including)	4.3.3 (including)
Mailsweeper	Clearswift	4.3.4 (including)	4.3.4 (including)
Mailsweeper	Clearswift	4.3.5 (including)	4.3.5 (including)
Mailsweeper	Clearswift	4.3.6 (including)	4.3.6 (including)
Mailsweeper	Clearswift	4.3.6_sp1 (including)	4.3.6_sp1 (including)
Mailsweeper	Clearswift	4.3.7 (including)	4.3.7 (including)
Mailsweeper	Clearswift	4.3.8 (including)	4.3.8 (including)
Mailsweeper	Clearswift	4.3.10 (including)	4.3.10 (including)
Mailsweeper	Clearswift	4.3.11 (including)	4.3.11 (including)
Mailsweeper	Clearswift	4.3.13 (including)	4.3.13 (including)

References

http://www.osvdb.org/3742
http://www.secunia.com/advisories/10732/
http://www.securityfocus.com/bid/9556
https://exchange.xforce.ibmcloud.com/vulnerabilities/14979
http://www.osvdb.org/3742
http://www.secunia.com/advisories/10732/
http://www.securityfocus.com/bid/9556
https://exchange.xforce.ibmcloud.com/vulnerabilities/14979

NVD	https://nvd.nist.gov/vuln/detail/CVE-2004-2328
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html