cgiemail Open E-Mail Relay

2002-07-16T00:00:00
ID OSVDB:3955
Type osvdb
Reporter OSVDB
Modified 2002-07-16T00:00:00

Description

Vulnerability Description

MIT cgiemail contains a flaw that allows a remote attacker to send e-mail without authentication. The issue us due to the program not asking or requiring authentication credentials to send e-mail. If an attacker (or spammer) uses this, mail can be sent through the server and made to appear from the victim network.

Solution Description

Currently, there are no known workarounds or upgrades to correct this issue. However, third parties have released a patch to address this vulnerability.

Short Description

MIT cgiemail contains a flaw that allows a remote attacker to send e-mail without authentication. The issue us due to the program not asking or requiring authentication credentials to send e-mail. If an attacker (or spammer) uses this, mail can be sent through the server and made to appear from the victim network.

Manual Testing Notes

/cgi-bin/cgiemail?required-webmaster=xxx@xxx.com&required-from=zzz@zzz.com&required-subject=spam%0aCC:address1@smap.com%20address2@smap.com%20address3@smap.com&comments=spam%20message

References:

Vendor URL: http://web.mit.edu/wwwdev/cgiemail/ Vendor Specific Advisory URL Other Solution URL: http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2003-10/0052.html Other Solution URL: http://ask-leo.com/archives/000028.html Generic Informational URL: http://www.net-security.org/vuln.php?id=1779 Generic Informational URL: http://www.securiteam.com/unixfocus/6S007208KS.html CVE-2002-1575