CVE-2002-0751

Name of the Vulnerable Software and Affected Versions csMailto.cgi

Description The issue allows remote attackers to use csMailto as a spam proxy, enabling them to send mail to arbitrary users. This is achieved by modifying the form-to, form-from, and form-results parameters.

Recommendations For csMailto.cgi, consider restricting access to the form-to, form-from, and form-results parameters to prevent unauthorized use as a spam proxy. As a temporary workaround, restrict the functionality of the csMailto.cgi program until a more permanent solution is available. At the moment, there is no information about a newer version that contains a fix for this issue.