CVE-2006-3522
NONE EPSS 75.4%
Published Jul 12, 200619y ago · Modified Jun 16, 20262w ago
Published Jul 12, 2006 19y ago
Last Modified Jun 16, 2026 2w ago
Description
Cross-site scripting (XSS) vulnerability in Clearswift MIMEsweeper for Web before 5.1.15 Hotfix allows remote attackers to inject arbitrary web script or HTML via the URL, which is reflected back in an error message when trying to access a blocked web site.
Threat Intelligence
EPSS Exploit Probability
75.4% percentile
Exploit & Patch Status
No Known Exploit
Patch Available
Affected Products 1
| Vendor | Product | Version | Range |
|---|---|---|---|
| clearswift | mimesweeper_for_web | * | ≤5.1.14 |
References 11
- download.mimesweeper.com http://download.mimesweeper.com/www/TechnicalDocumentation/WebReadMeHotfix5115.htm
- marc.info http://marc.info/?l=full-disclosure&m=115249298204354&w=2
- marc.info http://marc.info/?l=full-disclosure&m=115253320721404&w=2
- marc.info http://marc.info/?l=full-disclosure&m=115253898206225&w=2
- secunia.com http://secunia.com/advisories/20998
- securitytracker.com http://securitytracker.com/id?1016454
- securityfocus.com http://www.securityfocus.com/archive/1/439641/100/0/threaded
- securityfocus.com http://www.securityfocus.com/archive/1/440140/100/0/threaded
- securityfocus.com http://www.securityfocus.com/bid/18916
- vupen.com http://www.vupen.com/english/advisories/2006/2731
- exchange.xforce.ibmcloud.com https://exchange.xforce.ibmcloud.com/vulnerabilities/27642
Remediation
- download.mimesweeper.com http://download.mimesweeper.com/www/TechnicalDocumentation/WebReadMeHotfix5115.htm
- secunia.com http://secunia.com/advisories/20998