- Client Security
- Anti-Virus for Workstations
- Linux Security
- E-mail and Server Security
- Server Security
- Anti-Virus for Windows Servers
- Anti-Virus for Citrix Servers
- Anti-Virus for Microsoft Exchange
- Internet Gatekeeper for Linux
- Messaging Security Gateway
- Policy Manager
- Policy Manager for Linux
- Protection Service for Business
- Mobile Security for Business
Anti-Virus for MIME Sweeper
This new version is a service release that addresses the security problems described in our recent advisories.
We strongly recommend upgrading from an earlier version.
Please note that as of January 1st, 2010, extensions, renewals or new licenses are no longer available for F-Secure MIMEsweeper. No new features are being developed but the product will be maintained to be functional with the supported platforms and compatible products for those customers with valid support and maintenance contracts until the end-of-life date (31.12.2011) of the product.
Operating systems
Clearswift MIMEsweeper family:
MIMEsweeper™ for SMTP 5.1
MIMEsweeper™ for SMTP 5.0
MIMEsweeper™ for Web 5.10
MIMEsweeper™ for Web 5.0
Windows 2000 Server Family:
Microsoft® Windows 2000 Server with the latest service pack
Microsoft® Windows 2000 Advanced Server with the latest service pack
Windows 2003 Server Family:
Microsoft® Windows Server 2003, Standard Edition with or without Service Pack 1
Microsoft® Windows Server 2003, Enterprise Edition with or without Service Pack 1
Software Downloads
Hotfixes
Anti-Virus for MIMEsweeper 5.61
F-Secure Anti-Virus for MIMEsweeper 5.61 Hotfix 8 (April 12, 2010)
Related to security advisory FSC-2010-1.
This hotfix solves the following malformed archive bypass vulnerability: Malware inside specially crafted 7Z, GZIP, CAB or RAR archive files may remain undetected. For more information about the vulnerability, refer to Security Advisory FSC-2010-1. Restart is not required after installing this hotfix.
F-Secure Anti-Virus for MIMEsweeper 5.61 Hotfix 7 (October 21, 2008)
Related to security advisory FSC-2008-3.
This hotfix solves the following RPM parsing vulnerability: If attackers send specially-made compressed file archives to users whose antivirus software is set to scan inside compressed archives, an integer overflow occurs. The result is a controlled buffer overflow attack. It allows the attackers to control the computer on the system level. Restart is not required after installing this hotfix.
F-Secure Anti-Virus for MIMEsweeper 5.61 Hotfix 6 (June 11, 2008)
This hotfix is required to ensure that the getdbhtp.exe tool can cope with updates published after July 2008. If you have centrally managed installation or F-Secure Backweb installed on the same system running Anti-Virus, installing this hotfix is not necessary. Restart is not required after installing this hotfix.
F-Secure Anti-Virus for MIMEsweeper 5.61 Hotfix 5 (March 17, 2008)
Related to security advisory FSC-2008-2.
This hotfix solves the following archive handing vulnerability: specially crafted archives can cause a product malfunction which may lead to unhandled exceptions visible as product crash, hang and/or possible remote code execution. Restart is not required after installing this hotfix.
F-Secure Anti-Virus for MIMEsweeper 5.61 Hotfix 4 (February 13, 2008)
Related to security advisory FSC-2008-1.
This hotfix solves a problem where specially crafted CAB and RAR archives can bypass antivirus scanning. Restart is required after installing this hotfix.
F-Secure Anti-Virus for MIMEsweeper 5.61 Hotfix 3 (May 30, 2007)
Note: There is a service release available at http://www.f-secure.com/webclub/fsavmime.html which solves the described vulnerabilities. It is recommended that you download the service release instead of the hotfix. However, if the service release is not feasible, download this hotfix.
This hotfix solves the following vulnerabilities:
- Several F-Secure products have a buffer overflow vulnerability in processing LHA archives. This may allow an attacker to execute arbitrary code or to create a denial-of-service condition. This vulnerability is related to a similar vulnerability in GZIP program’s handling of LZH-compressed archives. This vulnerability is described in detail in F-Secure Security Advisory FSC-2007-1.
- IOCTL (Input/Output Control) vulnerability in Real-time Scanning component may allow an attacker to gain elevated privileges to the system. This vulnerability is described in detail in F-Secure Security Advisory FSC-2007-2.
Restart is required after installing this hotfix.
F-Secure Anti-Virus for MIMEsweeper 5.61 Hotfix 2 (April 12, 2007)
This hotfix solves a problem when the scanning of certain files fails with F-Secure Anti-Virus for MIMEsweeper. The error message shown in the MIMEsweeper for SMTP Message Center is Scanning error with error (trap) code 310. As a result, the message will be classified as infected. We recommend that you install this hotfix. Restart is not required after installing this hotfix.
F-Secure Anti-Virus for MIMEsweeper 5.61 Hotfix 1 (June 28, 2006)
Related to security advisory FSC-2006-1 and FSC-2006-4.
This hotfix solves the following two vulnerabilities:
- Related to specially crafted ZIP and RAR archives. The vulnerabilities may be used to execute code on affected systems and avoid successful scanning of the archive files.
- Where a) the name of an executable has been modified in a certain way or b) the "Scan network" setting has been disabled and scanning of removable drives fails.
Restart is not required after installing this hotfix.