PT-2003-2307 · Sendmail+1 · Sendmail.Cf+1
Publicado
2003-12-31
·
Atualizado
2017-07-29
·
CVE-2003-1362
CVSS v2.0
7.8
Alta
| Vetor | AV:N/AC:L/Au:N/C:C/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
HP-UX versions 11.00 and 11.11
Description
The issue is related to the improper configuration of the
NOVRFY and NOEXPN options in the sendmail.cf file. This could allow remote attackers to verify the existence of system users and expand defined sendmail aliases.Recommendations
For HP-UX version 11.00, properly configure the
NOVRFY and NOEXPN options in the sendmail.cf file to prevent remote attackers from verifying system users and expanding sendmail aliases.
For HP-UX version 11.11, properly configure the NOVRFY and NOEXPN options in the sendmail.cf file to prevent remote attackers from verifying system users and expanding sendmail aliases.Correção
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Hp-Ux
Sendmail.Cf