Vulnerability CVE-2003-0468

Vulnerability Name:

CVE-2003-0468 (CCN-12815)

Assigned:

2003-08-03

Published:

2003-08-03

Updated:

2017-10-11

Summary:

Postfix 1.1.11 and earlier allows remote attackers to use Postfix to conduct "bounce scans" or DDos attacks of other hosts via an email address to the local host containing the target IP address and service name followed by a "!" string, which causes Postfix to attempt to use SMTP to communicate with the target on the associated port.

CVSS v3 Severity:

5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Low

CVSS v2 Severity:

5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Partial

5.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Partial

Vulnerability Type:

CWE-Other

Vulnerability Consequences:

Denial of Service

References:

Source: CCN
Type: VulnWatch Mailing List, Sun Aug 03 2003 - 14:12:34 CDT
Postfix 1.1.12 remote DoS / Postfix 1.1.11 bounce scanning

Source: MITRE
Type: CNA
CVE-2003-0468

Source: CONECTIVA
Type: UNKNOWN
CLA-2003:717

Source: CCN
Type: Conectiva Linux Security Announcement CLSA-2003:717
postfix

Source: BUGTRAQ
Type: UNKNOWN
20030804 Postfix 1.1.12 remote DoS / Postfix 1.1.11 bounce scanning

Source: CCN
Type: RHSA-2003-251
New postfix packages fix security issues.

Source: CCN
Type: SA9433
Postfix DoS and Bounce Scan Vulnerabilities

Source: SECUNIA
Type: UNKNOWN
9433

Source: DEBIAN
Type: Patch, Vendor Advisory
DSA-363

Source: DEBIAN
Type: DSA 363-1
New postfix packages fix remote denial of service, bounce scanning

Source: DEBIAN
Type: DSA-363
postfix -- denial of service

Source: MANDRAKE
Type: UNKNOWN
MDKSA-2003:081

Source: SUSE
Type: UNKNOWN
SuSE-SA:2003:033

Source: CCN
Type: OSVDB ID: 6551
Postfix Bounce Scan / Packet Amplification DDoS

Source: CCN
Type: Postfix Web site
The Postfix Home Page

Source: REDHAT
Type: UNKNOWN
RHSA-2003:251

Source: BID
Type: UNKNOWN
8333

Source: CCN
Type: BID-8333
Multiple Postfix Denial of Service Vulnerabilities

Source: CCN
Type: BID-8361
Postfix Connection Proxying Vulnerability

Source: XF
Type: UNKNOWN
postfix-ddos(12815)

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:522

Source: SUSE
Type: SUSE-SA:2003:033
postfix: remote Denial of Service (DoS) attack

Vulnerable Configuration:

Configuration 1:

cpe:/a:wietse_venema:postfix:1.0.21:*:*:*:*:*:*:*

OR cpe:/a:wietse_venema:postfix:1.1.11:*:*:*:*:*:*:*

OR cpe:/a:wietse_venema:postfix:1999-09-06:*:*:*:*:*:*:*

OR cpe:/a:wietse_venema:postfix:1999-12-31:*:*:*:*:*:*:*

OR cpe:/a:wietse_venema:postfix:2000-02-28:*:*:*:*:*:*:*

OR cpe:/a:wietse_venema:postfix:2001-11-15:*:*:*:*:*:*:*

OR cpe:/o:conectiva:linux:7.0:*:*:*:*:*:*:*

OR cpe:/o:conectiva:linux:8.0:*:*:*:*:*:*:*

Configuration CCN 1:

cpe:/a:wietse_venema:postfix:1.1.11:*:*:*:*:*:*:*

OR cpe:/a:wietse_venema:postfix:1.0.21:*:*:*:*:*:*:*

AND

cpe:/o:suse:suse_linux:7.2:*:*:*:*:*:*:*

OR cpe:/o:conectiva:linux:7.0:*:*:*:*:*:*:*

OR cpe:/o:suse:suse_linux:7.3:*:*:*:*:*:*:*

OR cpe:/a:suse:suse_linux_database_server:*:*:*:*:*:*:*:*

OR cpe:/a:suse:suse_email_server:iii:*:*:*:*:*:*:*

OR cpe:/a:suse:suse_linux_connectivity_server:*:*:*:*:*:*:*:*

OR cpe:/o:mandrakesoft:mandrake_linux:8.2:*:*:*:*:*:*:*

OR cpe:/o:suse:suse_linux:8.0:*:*:*:*:*:*:*

OR cpe:/o:conectiva:linux:8.0:*:*:*:*:*:*:*

OR cpe:/o:redhat:linux:7.3:*:*:*:*:*:*:*

OR cpe:/o:debian:debian_linux:3.0:*:*:*:*:*:*:*

OR cpe:/a:suse:suse_linux_office_server:*:*:*:*:*:*:*:*

OR cpe:/o:redhat:linux:8.0:*:*:*:*:*:*:*

OR cpe:/o:mandrakesoft:mandrake_linux:9.0:*:*:*:*:*:*:*

OR cpe:/a:suse:suse_email_server:3.1:*:*:*:*:*:*:*

OR cpe:/o:suse:suse_linux:8.1:*:*:*:*:*:*:*

OR cpe:/o:suse:linux_enterprise_server:8:*:*:*:*:*:*:*

OR cpe:/a:mandrakesoft:mandrake_multi_network_firewall:8.2:*:*:*:*:*:*:*

OR cpe:/o:mandrakesoft:mandrake_linux_corporate_server:2.1:*:*:*:*:*:*:*

OR cpe:/o:redhat:linux:9.0:*:*:*:*:*:*:*

OR cpe:/o:mandrakesoft:mandrake_linux:8.2::ppc:*:*:*:*:*

OR cpe:/o:mandrakesoft:mandrake_linux_corporate_server:2.1::x86_64:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.cisecurity:def:1014	P	DSA-363-1 -- postfix -- denial of service, bounce-scanning	2016-09-16
oval:org.opensuse.security:def:20030468	V	CVE-2003-0468	2015-11-16
oval:org.mitre.oval:def:522	V	Postfix Bounce Scans Vulnerability	2010-09-20
oval:org.debian:def:363	V	denial of service, bounce-scanning	2003-08-03

BACK