CVE-2001-1075

Name of the Vulnerable Software and Affected Versions Cobalt RaQ3 servers poprelayd script version prior to 2.0

Description The issue allows remote attackers to bypass authentication for relaying by injecting a "POP login by user" string that includes the attacker's IP address into the maillog log file.

Recommendations For versions prior to 2.0, update the poprelayd script to version 2.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the maillog log file to minimize the risk of exploitation.