Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2000-0448

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2000-0448
Last Modified 10 Sep 2008 03:04:42
Published 01 May 2000 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2000-0448

Summary

The WebShield SMTP Management Tool version 4.5.44 does not properly restrict access to the management port when an IP address does not resolve to a hostname, which allows remote attackers to access the configuration via the GET_CONFIG command.

Vulnerable Systems

Application

  • Network Associates Webshield 4.5.44


References

BUGTRAQ - 20000525 DST2K0003 : Buffer Overrun in NAI WebShield SMTP v4.5.44 Managem ent Tool

BID - 1253

OSVDB - 326


Last Updated: 27 May 2016 10:35:42