CVE-2007-3803

Name of the Vulnerable Software and Affected Versions: Clavister CorePlus versions prior to 8.80.04 Clavister CorePlus version 8.81.00

Description: The issue is related to the SMTP ALG in Clavister CorePlus, which does not properly parse SMTP commands under certain circumstances. This allows remote attackers to bypass address blacklists.

Recommendations: For Clavister CorePlus versions prior to 8.80.04, update to version 8.80.04 or later. For Clavister CorePlus version 8.81.00, consider disabling the SMTP ALG as a temporary workaround until a patch is available.