Postfix 2.1.3, when /proc/net/if_inet6 is not available and permit_mx_backup is enabled in smtpd_recipient_restrictions, allows remote attackers to bypass e-mail restrictions and perform mail relaying by sending mail to an IPv6 hostname.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Postfix | Wietse_venema | 2.1.3 (including) | 2.1.3 (including) |
| Red Hat Enterprise Linux 4 | RedHat | postfix-2:2.1.5-4.2.RHEL4 | * |
| Postfix | Ubuntu | dapper | * |
| Postfix | Ubuntu | devel | * |
| Postfix | Ubuntu | edgy | * |
| Postfix | Ubuntu | feisty | * |
References
- http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=267837
- http://marc.info/?l=bugtraq\u0026m=110763358832637\u0026w=2
- http://secunia.com/advisories/14137/
- http://www.redhat.com/support/errata/RHSA-2005-152.html
- http://www.securityfocus.com/bid/12445
- https://exchange.xforce.ibmcloud.com/vulnerabilities/19218
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11339
- http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=267837
- http://marc.info/?l=bugtraq\u0026m=110763358832637\u0026w=2
- http://secunia.com/advisories/14137/
- http://www.redhat.com/support/errata/RHSA-2005-152.html
- http://www.securityfocus.com/bid/12445
- https://exchange.xforce.ibmcloud.com/vulnerabilities/19218
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11339