CVE-2007-3803 Information

Description

The SMTP ALG in Clavister CorePlus before 8.80.04 and 8.81.00 does not properly parse SMTP commands in certain circumstances which allows remote attackers to bypass address blacklists.

Reference

http://osvdb.org/37974 http://secunia.com/advisories/25957 http://www.clavister.com/releasenotes/CorePlus_Release_Notes_8_80_04.pdf http://www.clavister.com/releasenotes/CorePlus_Release_Notes_8_81_01.pdf https://exchange.xforce.ibmcloud.com/vulnerabilities/35371