NTMail3 Arbitrary Mail Relay

This script is Copyright (C) 1999-2017 Tenable Network Security, Inc.


Synopsis :

An open SMTP relay is running on the remote host.

Description :

Nessus has detected that the remote SMTP server allows anyone to use
it as a mail relay provided that the source address is set to '<>'.
This issue allows any spammer to use your mail server to send their
mail to the world, thus flooding your network bandwidth and possibly
getting your mail server blacklisted.

See also :

https://en.wikipedia.org/wiki/Email_spam
http://www.nthelp.com/40/ntmailspam.htm

Solution :

Reconfigure your SMTP server so that it cannot be used as an
indiscriminate SMTP relay. Make sure that the server uses appropriate
access controls to limit the extent to which relaying is possible.

Risk factor :

High / CVSS Base Score : 7.8
(CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C)

Family: SMTP problems

Nessus Plugin ID: 10167 ()

Bugtraq ID:

CVE ID:

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now