Vulnerability Name: | CVE-2005-0337 (CCN-19218) | ||||||||||||
Assigned: | 2005-01-31 | ||||||||||||
Published: | 2005-01-31 | ||||||||||||
Updated: | 2017-10-11 | ||||||||||||
Summary: | Postfix 2.1.3, when /proc/net/if_inet6 is not available and permit_mx_backup is enabled in smtpd_recipient_restrictions, allows remote attackers to bypass e-mail restrictions and perform mail relaying by sending mail to an IPv6 hostname. | ||||||||||||
CVSS v3 Severity: | 7.3 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)
| ||||||||||||
CVSS v2 Severity: | 7.5 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)
| ||||||||||||
Vulnerability Type: | CWE-Other | ||||||||||||
Vulnerability Consequences: | Other | ||||||||||||
References: | Source: CONFIRM Type: Vendor Advisory http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=267837 Source: MITRE Type: CNA CVE-2005-0337 Source: BUGTRAQ Type: UNKNOWN 20050204 [USN-74-1] Postfix vulnerability Source: CCN Type: RHSA-2005-152 postfix security update Source: CCN Type: SA14137 Ubuntu Postfix IPv6 Relaying Security Issue Source: SECUNIA Type: Patch 14137 Source: REDHAT Type: UNKNOWN RHSA-2005:152 Source: BID Type: Patch 12445 Source: CCN Type: BID-12445 Postfix IPv6 Unauthorized Mail Relay Vulnerability Source: CCN Type: USN-74-1 Postfix vulnerability Source: CCN Type: USN-74-2 Fixed Postfix packages for USN-74-1 Source: XF Type: UNKNOWN postfix-ipv6-mail-relay(19218) Source: XF Type: UNKNOWN postfix-ipv6-security-bypass(19218) Source: OVAL Type: UNKNOWN oval:org.mitre.oval:def:11339 | ||||||||||||
Vulnerable Configuration: | Configuration 1: Configuration 2: Configuration RedHat 1: Configuration CCN 1: Denotes that component is vulnerable | ||||||||||||
Oval Definitions | |||||||||||||
| |||||||||||||
BACK |