SA v3.4.6:
Consider an Email with a UTF-8 attachment name: ®Payroll_stubs.Htm
defined by the MIME header:
Content-Disposition: attachment; filename*0*=utf-8''%C2%AEPayroll_stubs.Htm
A PERL unicode-formatted rule fails:
mimeheader __JR_EXPLOIT_ATT_UTF Content-Disposition =~
/(\xC2\xAEPayroll_stubs\.Htm)([";']?|$)/
The more native (raw) formatted rule works even without specifying
"Content-Disposition:raw":
mimeheader __JR_EXPLOIT_ATT_UTF Content-Disposition =~
/(%C2%AEPayroll_stubs\.Htm)([";']?|$)/
How does SA handle UTF-8 filenames?
-- Jared Hall
