CVE-2003-0285

medium

Description

IBM AIX 5.2 and earlier distributes Sendmail with a configuration file (sendmail.cf) with the (1) promiscuous_relay, (2) accept_unresolvable_domains, and (3) accept_unqualified_senders features enabled, which allows Sendmail to be used as an open mail relay for sending spam e-mail.

References

http://marc.info/?l=bugtraq&m=105284689228961&w=2

http://security.sdsc.edu/advisories/2003.05.13-AIX-sendmail.txt

http://www.kb.cert.org/vuls/id/814617

http://www.securityfocus.com/bid/7580

https://exchange.xforce.ibmcloud.com/vulnerabilities/11993

Details

Source: MITRE

Published: 2003-06-16

Updated: 2017-07-11

Risk Information

CVSS v2

Base Score: 5

Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N

Impact Score: 2.9

Exploitability Score: 10

Severity: MEDIUM