Описание
NetWin dMailWeb and cwMail 2.6g and earlier allows remote attackers to bypass authentication and use the server for mail relay via a username that contains a carriage return.
Ссылки
- PatchVendor Advisory
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:netwin:cwmail:2.6g:*:*:*:*:*:*:*
cpe:2.3:a:netwin:dmailweb:2.6g:*:*:*:*:*:*:*
EPSS
Процентиль: 75%
0.00942
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
больше 3 лет назад
NetWin dMailWeb and cwMail 2.6g and earlier allows remote attackers to bypass authentication and use the server for mail relay via a username that contains a carriage return.
EPSS
Процентиль: 75%
0.00942
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other