Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2003-0468
HistoryAug 27, 2003 - 4:00 a.m.

CVE-2003-0468

2003-08-2704:00:00
NVD-CWE-Other
[email protected]
web.nvd.nist.gov
58
postfix
remote attacks
bounce scans
ddos attacks
email security
ip address
smtp communication
nvd

6.3 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.026 Low

EPSS

Percentile

90.4%

JSON

Postfix 1.1.11 and earlier allows remote attackers to use Postfix to conduct “bounce scans” or DDos attacks of other hosts via an email address to the local host containing the target IP address and service name followed by a “!” string, which causes Postfix to attempt to use SMTP to communicate with the target on the associated port.

Related

cvelist 1
debiancve 1
nessus 4
openvas 2
osv 1
exploitpack 2
cert 1
seebug 2
suse 1
debian 1
securityvulns 1
exploitdb 2
cvelist
cvelist
CVE-2003-0468
2003-08-05 04:00:00
debiancve
debiancve
CVE-2003-0468
2003-08-27 04:00:00
nessus
nessus
Mandrake Linux Security Advisory : postfix (MDKSA-2003:081)
2004-07-31 00:00:00
Debian DSA-363-1 : postfix - denial of service, bounce-scanning
2004-09-29 00:00:00
SUSE-SA:2003:033: postfix
2004-07-25 00:00:00
openvas
openvas
Debian Security Advisory DSA 363-1 (postfix)
2008-01-17 00:00:00
Debian: Security Advisory (DSA-363)
2008-01-17 00:00:00
osv
osv
postfix - denial of service, bounce-scanning
2003-08-03 00:00:00
exploitpack
exploitpack
Postfix 1.1.x - Denial of Service (1)
2003-08-04 00:00:00
Postfix 1.1.x - Denial of Service (2)
2003-08-04 00:00:00
cert
cert
Postfix vulnerable to DoS by supplying a remote SMTP listener with a malformed envelope address
2003-08-11 00:00:00
seebug
seebug
Postfix 1.1.x Denial of Service Vulnerabilities (1)
2014-07-01 00:00:00
Postfix 1.1.x Denial of Service Vulnerabilities (2)
2014-07-01 00:00:00
suse
suse
remote Denial of Service (DoS) attack in postfix
2003-08-04 12:19:27
debian
debian
[SECURITY] [DSA-363-1] New postfix packages fix remote denial of service, bounce scanning
2003-08-03 00:00:00
securityvulns
securityvulns
[Full-Disclosure] Postfix 1.1.12 remote DoS / Postfix 1.1.11 bounce scanning
2003-08-04 00:00:00
exploitdb
exploitdb
Postfix 1.1.x - Denial of Service (1)
2003-08-04 00:00:00
Postfix 1.1.x - Denial of Service (2)
2003-08-04 00:00:00

6.3 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.026 Low

EPSS

Percentile

90.4%

JSON
Related for CVE-2003-0468
cvelist1debiancve1nessus4openvas2osv1exploitpack2cert1seebug2suse1debian1securityvulns1exploitdb2