Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-0833

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2004-0833
Last Modified 10 Sep 2008 03:27:57
Published 23 Dec 2004 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-0833

Summary

Sendmail before 8.12.3 on Debian GNU/Linux, when using sasl and sasl-bin, uses a Sendmail configuration script with a fixed username and password, which could allow remote attackers to use Sendmail as an open mail relay and send spam messages.

Vulnerable Systems

Operating System

  • Debian Linux 3.0


References

XF - sendmail-mail-relay(17531)

BID - 11262

DEBIAN - DSA-554

SECUNIA - 12667


Last Updated: 27 May 2016 10:38:46