Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-2261

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2002-2261
Last Modified 18 Jul 2011 09:13:49
Published 31 Dec 2002 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2002-2261

Summary

Sendmail 8.9.0 through 8.12.6 allows remote attackers to bypass relaying restrictions enforced by the 'check_relay' function by spoofing a blank DNS hostname.

Vulnerable Systems

Application

  • Sendmail 8.10

  • Sendmail 8.10.0

  • Sendmail 8.10.1

  • Sendmail 8.10.2

  • Sendmail 8.11.0

  • Sendmail 8.11.1

  • Sendmail 8.11.2

  • Sendmail 8.11.3

  • Sendmail 8.11.4

  • Sendmail 8.11.5

  • Sendmail 8.11.6

  • Sendmail 8.11.7

  • Sendmail 8.12

  • Sendmail 8.12.0

  • Sendmail 8.12.1

  • Sendmail 8.12.2

  • Sendmail 8.12.3

  • Sendmail 8.12.4

  • Sendmail 8.12.5

  • Sendmail 8.12.6

  • Sendmail 8.9.0

  • Sendmail 8.9.1

  • Sendmail 8.9.2

  • Sendmail 8.9.3


References

XF - sendmail-check-relay-bypass(10775)

CONFIRM - http://www.sendmail.org/8.12.7.html

BID - 6548

SECTRACK - 1005748

VUPEN - ADV-2009-3539

SECUNIA - 7826

SGI - 20030101-01-P


Last Updated: 27 May 2016 10:37:40