Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2003-0285

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2003-0285
Last Modified 05 Sep 2008 04:33:57
Published 16 Jun 2003 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2003-0285

Summary

IBM AIX 5.2 and earlier distributes Sendmail with a configuration file (sendmail.cf) with the (1) promiscuous_relay, (2) accept_unresolvable_domains, and (3) accept_unqualified_senders features enabled, which allows Sendmail to be used as an open mail relay for sending spam e-mail.

Vulnerable Systems

Operating System

  • Ibm Aix 5.2


References

CERT-VN - VU#814617

XF - aix-sendmail-mail-relay(11993)

BID - 7580

MISC - http://security.sdsc.edu/advisories/2003.05.13-AIX-sendmail.txt

BUGTRAQ - 20030513 AIX sendmail open relay


Last Updated: 27 May 2016 10:37:50