4 matches found
CVE-2008-6984
Plesk 8.6.0, when short mail login names SHORTNAMES are enabled, allows remote attackers to bypass authentication and send spam e-mail via a message with 1 a base64-encoded username that begins with a valid shortname, or 2 a username that matches a valid password, as demonstrated using a SMTP and...
CVE-2005-0493
CRLF injection vulnerability in bizmail.cgi in Biz Mail Form before 2.2 allows remote attackers to bypass the email check and send spam e-mail via CRLF sequences and forged mail headers in the email parameter...
CVE-2005-0493
The CVE-2005-0493 issue affects Biz Mail Form’s BizMail CGI (bizmail.cgi) prior to version 2.2. A CRLF injection in the email parameter lets remote, unauthenticated attackers bypass the email check and relay spam by crafting email headers via CRLF sequences. The impact is remote abuse of the mail...
CVE-2003-0285
IBM AIX 5.2 and earlier distributes Sendmail with a configuration file sendmail.cf with the 1 promiscuousrelay, 2 acceptunresolvabledomains, and 3 acceptunqualifiedsenders features enabled, which allows Sendmail to be used as an open mail relay for sending spam e-mail...