CVE-2004-0833 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2004-0833

CWE

https://cwe.mitre.org/data/definitions/NVD-Other.html

Sendmail before 8.12.3 on Debian GNU/Linux, when using sasl and sasl-bin, uses a Sendmail configuration script with a fixed username and password, which could allow remote attackers to use Sendmail as an open mail relay and send spam messages.

Affected Software

Name	Vendor	Start Version	End Version
Debian_linux	Debian	3.0 (including)	3.0 (including)
Sendmail	Ubuntu	dapper	*
Sendmail	Ubuntu	edgy	*

References

http://secunia.com/advisories/12667
http://www.debian.org/security/2004/dsa-554
http://www.securityfocus.com/bid/11262
https://exchange.xforce.ibmcloud.com/vulnerabilities/17531
http://secunia.com/advisories/12667
http://www.debian.org/security/2004/dsa-554
http://www.securityfocus.com/bid/11262
https://exchange.xforce.ibmcloud.com/vulnerabilities/17531