2 matches found
CVE-2003-1362
Bastille B.02.00.00 on HP-UX 11.00/11.11 does not properly configure NOVRFY and NOEXPN in sendmail.cf, enabling potential remote user enumeration and alias expansion via the mail system. Affected component is sendmail configuration handling in Bastille’s HP-UX environment; root cause is misconfig...
CVE-2003-1362
Bastille B.02.00.00 of HP-UX 11.00 and 11.11 does not properly configure the 1 NOVRFY and 2 NOEXPN options in the sendmail.cf file, which could allow remote attackers to verify the existence of system users and expand defined sendmail aliases...