Lucene search
+L

69 matches found

cvelist
cvelist
added 2008/06/19 8:0 p.m.24 views

CVE-2008-2784

The smtpfilter function in spamdyke before 3.1.8 does not filter RCPT commands after encountering the first DATA command, which allows remote attackers to use the server as an open mail relay by sending RCPT commands with invalid recipients, followed by a DATA command, followed by arbitrary RCPT...

6.8AI score0.01359EPSS
Exploits0References4
cve
cve
added 2008/06/19 8:0 p.m.55 views

CVE-2008-2784

CVE-2008-2784 affects spamdyke prior to 3.1.8. The smtp_filter fails to properly filter RCPT commands after the first DATA command, enabling a remote attacker to use the server as an open relay by issuing RCPT commands with invalid recipients, then a DATA, and continuing with RCPT/DATA sequences....

6.4CVSS6.8AI score0.01359EPSS
Exploits0References4Affected Software1
securityvulns
securityvulns
added 2006/11/23 12:0 a.m.141 views

уязвимости скриптов с www.wr-script.ru (wr-board 1.4Lite)

1 DoS. Не проверяется значение параметра page в index.php http://wr-script.host/board/index.php?event=list&id=112420973596&page=-10000000000000000 2 Открытая почтовая форма. Адрес по которому будет отправлено сообщение с доски передается в поле uemail hidden. Пример использования:...

0.1AI score
Exploits0
packetstorm
packetstorm
added 2006/06/12 12:0 a.m.34 views

GUESTEX-exec.pl.txt

Creator: K-sPecial xzziroz.net of .aware awarenetwork.org Name: GUESTEX-exec.pl Date: 06/07/2006 Version: 1.00 1.00 06/07/2006 - GUESTEX-exec.pl created Description: GUESTEX guestbook is vulnerable to remote code execution in how it handles it's 'email' parameter. $form'email' is used when openni...

7.4AI score
Exploits0
cve
cve
added 2006/03/03 11:0 a.m.55 views

CVE-2006-0977

The CVE-2006-0977 entry concerns Craig Morrison Mail Transport System Professional (MTS Pro), which acts as an open mail relay when configured to forward all mail to an external SMTP server. The vulnerability allows remote attackers to relay messages by connecting to the MTS Pro server and issuin...

5CVSS4.6AI score0.01702EPSS
Exploits0References5Affected Software1
nvd
nvd
added 2005/09/08 10:3 a.m.17 views

CVE-2005-2857

Free SMTP Server 2.2 allows remote attackers to use the server as an open mail relay spam proxy...

7.5CVSS6.7AI score0.02601EPSS
Exploits1References2
cvelist
cvelist
added 2005/09/08 4:0 a.m.22 views

CVE-2005-2857

Free SMTP Server 2.2 allows remote attackers to use the server as an open mail relay spam proxy...

4.7AI score0.02601EPSS
Exploits1References2
cve
cve
added 2005/09/08 4:0 a.m.62 views

CVE-2005-2857

CVE-2005-2857 affects Free SMTP Server 2.2 and allows remote attackers to use the server as an open mail relay (spam proxy). The vulnerability is a remote access issue enabling unauthorized relaying, leading to abuse for sending spam. The provided documents identify the affected software/version ...

7.5CVSS4.7AI score0.02601EPSS
Exploits1References2Affected Software1
securityvulns
securityvulns
added 2005/09/05 12:0 a.m.31 views

Free SMTP Server Open Mail Relay Vulnerability

Secunia Advisory: SA16698 Release Date: 2005-09-05 Critical: Moderately critical Impact: Security Bypass Where: From remote Solution Status: Unpatched Software: Free SMTP Server 2.x Select a product and view a complete list of all Patched/Unpatched Secunia advisories affecting it. Description:...

0.8AI score
Exploits0
cvelist
cvelist
added 2005/02/15 5:0 a.m.21 views

CVE-2005-0431

Barracuda Spam Firewall 3.1.10 and earlier does not restrict the domains that white-listed domains can send mail to, which allows members of white-listed domains to use Barracuda as an open mail relay for spam...

4.6AI score0.01283EPSS
Exploits0References3
cve
cve
added 2005/02/15 5:0 a.m.50 views

CVE-2005-0431

CVE-2005-0431 : Barracuda Spam Firewall 3.1.10 and earlier allows white-listed domains to relay mail to arbitrary destinations, creating an open relay. Root cause: insufficient restriction on destination domains for white-listed senders. Impact: enables spam relaying; CVSS from NVD lists base sco...

7.5CVSS4.6AI score0.01283EPSS
Exploits0References3Affected Software1
nvd
nvd
added 2004/12/23 5:0 a.m.13 views

CVE-2004-0833

Sendmail before 8.12.3 on Debian GNU/Linux, when using sasl and sasl-bin, uses a Sendmail configuration script with a fixed username and password, which could allow remote attackers to use Sendmail as an open mail relay and send spam messages...

7.5CVSS6.4AI score0.02507EPSS
Exploits0References4
ubuntucve
ubuntucve
added 2004/12/23 5:0 a.m.29 views

CVE-2004-0833

Sendmail before 8.12.3 on Debian GNU/Linux, when using sasl and sasl-bin, uses a Sendmail configuration script with a fixed username and password, which could allow remote attackers to use Sendmail as an open mail relay and send spam messages...

7.5CVSS5.9AI score0.02507EPSS
Exploits0References1
osv
osv
added 2004/12/23 5:0 a.m.6 views

CVE-2004-0833

Sendmail before 8.12.3 on Debian GNU/Linux, when using sasl and sasl-bin, uses a Sendmail configuration script with a fixed username and password, which could allow remote attackers to use Sendmail as an open mail relay and send spam messages...

6.4AI score
Exploits0References6
cvelist
cvelist
added 2004/11/19 5:0 a.m.29 views

CVE-2004-0833

Sendmail before 8.12.3 on Debian GNU/Linux, when using sasl and sasl-bin, uses a Sendmail configuration script with a fixed username and password, which could allow remote attackers to use Sendmail as an open mail relay and send spam messages...

6.3AI score0.02507EPSS
Exploits0References4
cve
cve
added 2004/11/19 5:0 a.m.68 views

CVE-2004-0833

CVE-2004-0833 affects Debian GNU/Linux Sendmail prior to 8.12.3 when sasl/sasl-bin is used. The Debian security advisory indicates that the Sendmail configuration script initializes the sasl database with a fixed username and password, enabling a remote attacker to use Sendmail as an open mail re...

7.5CVSS6.3AI score0.02507EPSS
Exploits0References4Affected Software1
debiancve
debiancve
added 2004/11/19 5:0 a.m.57 views

CVE-2004-0833

Sendmail before 8.12.3 on Debian GNU/Linux, when using sasl and sasl-bin, uses a Sendmail configuration script with a fixed username and password, which could allow remote attackers to use Sendmail as an open mail relay and send spam messages...

7.5CVSS4.8AI score0.02507EPSS
Exploits0
nessus
nessus
added 2004/09/29 12:0 a.m.30 views

Debian DSA-437-1 : cgiemail - open mail relay

A vulnerability was discovered in cgiemail, a CGI program used to email the contents of an HTML form, whereby it could be used to send email to arbitrary addresses. This type of vulnerability is commonly exploited to send unsolicited commercial email spam. %NASLMINLEVEL 70300 C Tenable Network...

5CVSS5.7AI score0.01387EPSS
Exploits0References2
cve
cve
added 2004/09/01 4:0 a.m.127 views

CVE-2002-1278

CVE-2002-1278 affects Linuxconf’s mailconf module (Linuxconf 1.24 and earlier than 1.28) on Conectiva Linux 6.0–8 (and possibly other distros). The vulnerability stems from generating sendmail.cf in a way that leaves Sendmail configured as an open relay, enabling remote attackers to send spam. Pu...

7.5CVSS4.6AI score0.02453EPSS
Exploits0References4Affected Software1
cvelist
cvelist
added 2004/09/01 4:0 a.m.27 views

CVE-2002-1278

The mailconf module in Linuxconf 1.24, and other versions before 1.28, on Conectiva Linux 6.0 through 8, and possibly other distributions, generates the Sendmail configuration file sendmail.cf in a way that configures Sendmail to run as an open mail relay, which allows remote attackers to send Sp...

4.5AI score0.02453EPSS
Exploits0References4
Rows per page
Query Builder