14 matches found
Linux Distros Unpatched Vulnerability : CVE-2023-51765
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - sendmail through 8.17.2 allows SMTP smuggling in certain configurations. Remote attackers can use a published exploitation technique to inject e-mail messages...
Updated sendmail packages fix security vulnerability
sendmail through 8.17.2 allows SMTP smuggling in certain configurations. Remote attackers can use a published exploitation technique to inject e-mail messages with a spoofed MAIL FROM address, allowing bypass of an SPF protection mechanism. This occurs because sendmail supports . but some other...
[SECURITY] [DLA 3829-2] sendmail regression update
------------------------------------------------------------------------- Debian LTS Advisory DLA-3829-2 [email protected] https://www.debian.org/lts/security/ Bastien Roucariès June 20, 2024 https://wiki.debian.org/LTS -...
[SECURITY] [DLA 3829-1] sendmail security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-3829-1 [email protected] https://www.debian.org/lts/security/ Bastien Roucariès June 15, 2024 https://wiki.debian.org/LTS -...
Security Bulletin: AIX is vulnerable to email spoofing due to sendmail (CVE-2023-51765)
Summary Vulnerability in sendmail could allow a remote attacker to spoof an email CVE-2023-51765. Vulnerability Details CVEID:CVE-2023-51765 DESCRIPTION: Proofpoint sendmail is vulnerable to SMTP smuggling, caused by improper handling of line endings . in an email message. By sending a specially...
AIX is vulnerable to email spoofing due to sendmail (CVE-2023-51765)
IBM SECURITY ADVISORY First Issued: Thu Apr 11 15:33:45 CDT 2024 The most recent version of this document is available here: https://aix.software.ibm.com/aix/efixes/security/sendmailadvisory4.asc Security Bulletin: AIX is vulnerable to email spoofing due to sendmail CVE-2023-51765...
openSUSE Security Advisory (SUSE-SU-2024:0743-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLED15: libmilter-doc / libmilter1_0 / rmail / sendmail / sendmail-devel / etc (SUSE-SU-2024:0743-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2024:0743-1 advisory. - CVE-2023-51765: Fixed new SMTP smuggling attack. bsc1218351 Tenable has extracted the preceding...
SUSE-SU-2024:0743-1 Security update for sendmail
This update for sendmail fixes the following issues: - CVE-2023-51765: Fixed new SMTP smuggling attack. bsc1218351...
SUSE-SU-2024:0742-1 Security update for sendmail
This update for sendmail fixes the following issues: - CVE-2023-51765: Fixed new SMTP smuggling attack. bsc1218351...
Slackware: Security Advisory (SSA:2024-031-01)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Slackware Linux 15.0 / current sendmail Vulnerability (SSA:2024-031-01)
The version of sendmail installed on the remote host is prior to 8.18.1. It is, therefore, affected by a vulnerability as referenced in the SSA:2024-031-01 advisory. - sendmail through 8.17.2 allows SMTP smuggling in certain configurations. Remote attackers can use a published exploitation...
CVE-2023-51765
sendmail through 8.17.2 allows SMTP smuggling in certain configurations. Remote attackers can use a published exploitation technique to inject e-mail messages with a spoofed MAIL FROM address, allowing bypass of an SPF protection mechanism. This occurs because sendmail supports . but some other...
CVE-2023-51765
CVE-2023-51765 affects sendmail up to 8.17.2, enabling SMTP smuggling via non-standard line endings that can spoof MAIL FROM and bypass SPF. The issue is mitigated by upgrading to 8.18.x or later (noted to enforce stricter RFC compliance, e.g., with srv_features). Several vendors have released fi...