Описание
The WebShield SMTP Management Tool version 4.5.44 does not properly restrict access to the management port when an IP address does not resolve to a hostname, which allows remote attackers to access the configuration via the GET_CONFIG command.
The WebShield SMTP Management Tool version 4.5.44 does not properly restrict access to the management port when an IP address does not resolve to a hostname, which allows remote attackers to access the configuration via the GET_CONFIG command.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2000-0448
- http://www.osvdb.org/326
- http://www.securityfocus.com/bid/1253
- http://www.securityfocus.com/templates/archive.pike?list=1&msg=6C740781F92BD411831F0090273A8AB806FD4A%40exchange.servers.delphis.net
- http://www.securityfocus.com/templates/archive.pike?list=1&msg=6C740781F92BD411831F0090273A8AB806FD4A@exchange.servers.delphis.net
EPSS
Процентиль: 70%
0.00631
Низкий
CVE ID
Связанные уязвимости
nvd
почти 26 лет назад
The WebShield SMTP Management Tool version 4.5.44 does not properly restrict access to the management port when an IP address does not resolve to a hostname, which allows remote attackers to access the configuration via the GET_CONFIG command.
EPSS
Процентиль: 70%
0.00631
Низкий