CVE Vulnerabilities

CVE-2005-0337

Published: May 02, 2005 | Modified: Nov 20, 2024
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu
UNTRIAGED

Postfix 2.1.3, when /proc/net/if_inet6 is not available and permit_mx_backup is enabled in smtpd_recipient_restrictions, allows remote attackers to bypass e-mail restrictions and perform mail relaying by sending mail to an IPv6 hostname.

Affected Software

Name Vendor Start Version End Version
Postfix Wietse_venema 2.1.3 (including) 2.1.3 (including)
Postfix Ubuntu dapper *
Postfix Ubuntu devel *
Postfix Ubuntu edgy *
Postfix Ubuntu feisty *
Red Hat Enterprise Linux 4 RedHat postfix-2:2.1.5-4.2.RHEL4 *

References