Description
Multiple content security gateway and antivirus products allow remote attackers to bypass content restrictions via MIME messages that use non-standard but frequently supported Content-Transfer-Encoding values such as (1) uuencode, (2) mac-binhex40, and (3) yenc, which may be interpreted differently by mail clients.
Affected products
- clearswift / mailsweeper4.3.7 – 4.3.7
- clearswift / mailsweeper4.3.8 – 4.3.8
- clearswift / mailsweeper4.3.10 – 4.3.10
- clearswift / mailsweeper4.3.11 – 4.3.11
- clearswift / mailsweeper4.3.13 – 4.3.13
- clearswift / mailsweeper4.3.14 – 4.3.14
- clearswift / mailsweeper4.3.15 – 4.3.15
- F-Secure / internet_gatekeeper6.3 – 6.3
- F-Secure / internet_gatekeeper6.4 – 6.4
- F-Secure / internet_gatekeeper6.31 – 6.31
- F-Secure / internet_gatekeeper6.32 – 6.32
- paul_l_daniels / ripmime1.2.0 – 1.2.0
- paul_l_daniels / ripmime1.2.1 – 1.2.1
- paul_l_daniels / ripmime1.2.2 – 1.2.2
- paul_l_daniels / ripmime1.2.3 – 1.2.3
- paul_l_daniels / ripmime1.2.4 – 1.2.4
- paul_l_daniels / ripmime1.2.5 – 1.2.5
- paul_l_daniels / ripmime1.2.6 – 1.2.6
- paul_l_daniels / ripmime1.2.7 – 1.2.7
- paul_l_daniels / ripmime1.3.2.0 – 1.3.2.0
- paul_l_daniels / ripmime1.3.2.2 – 1.3.2.2
- paul_l_daniels / ripmime1.3.2.3 – 1.3.2.3