[原文]MAILsweeper for SMTP 4.3.6 and 4.3.7 allows remote attackers to cause a denial of service (CPU consumption) via a PowerPoint attachment that either (1) is corrupt or (2) contains "embedded objects."
MAILsweeper for SMTP PowerPoint Document Processing
Denial of Service
Loss of Availability
MAILSweeper contains a flaw that may allow a remote denial of service. The issue is triggered when processing a malformed PowerPoint file which can cause the service to process the file indefinatly, utilizing all of the available CPU resource, and will result in loss of availability for the platform.
Upgrade to version 4.3.15 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.