CVE-2005-0107

Name of the Vulnerable Software and Affected Versions bsmtpd versions 2.3 and earlier

Description The issue affects the bsmtpd package in Debian GNU/Linux, potentially leading to breaches in confidentiality, integrity, and availability of protected information. Exploitation can be carried out remotely. Specifically, bsmtpd does not properly sanitize e-mail addresses, allowing remote attackers to execute arbitrary commands.

Recommendations For versions 2.3 and earlier, update to a version later than 2.3 to resolve the issue. As a temporary workaround, consider restricting access to the bsmtpd service to minimize the risk of exploitation.