poprelayd script before 2.0 in Cobalt RaQ3 servers allows remote attackers to bypass authentication for relaying by causing a POP login by user string that includes the attackers IP address to be injected into the maillog log file.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Cobalt_raq_3i | Sun | * | * |