CVE Vulnerabilities

CVE-2003-1362

Published: Dec 31, 2003 | Modified: Jul 29, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.8 HIGH
AV:N/AC:L/Au:N/C:C/I:N/A:N
RedHat/V2
RedHat/V3
Ubuntu

Bastille B.02.00.00 of HP-UX 11.00 and 11.11 does not properly configure the (1) NOVRFY and (2) NOEXPN options in the sendmail.cf file, which could allow remote attackers to verify the existence of system users and expand defined sendmail aliases.

Affected Software

Name Vendor Start Version End Version
Bastille Hp b.02.00.05 b.02.00.05
Hp-ux Hp 11.00 11.00
Hp-ux Hp 11.11 11.11

References