Symantec Mail Security for Domino Arbitrary Mail Relay

This script is Copyright (C) 2007-2014 Tenable Network Security, Inc.


Synopsis :

The remote Windows host contains an application that allows
unauthorized mail relaying.

Description :

Symantec Mail Security for Domino, which provides antispam and anti-
virus protection for Lotus Domino, is installed on the remote Windows
host.

The Premium Antispam feature included with the version of Symantec
Mail Security for Domino on the remote host reportedly fails to
recognize and reject a specific SMTP recipient address format. A
remote attacker may be able to leverage this flaw to relay spam and
other types of messages through the remote host.

See also :

http://www.symantec.com/avcenter/security/Content/2006.10.19.html

Solution :

Upgrade to Symantec Mail Security for Domino version 5.1.2.28 or
later.

Risk factor :

Medium / CVSS Base Score : 5.0
(CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N)
CVSS Temporal Score : 4.1
(CVSS2#E:F/RL:OF/RC:C)
Public Exploit Available : true

Family: Windows

Nessus Plugin ID: 23979 ()

Bugtraq ID: 19866

CVE ID: CVE-2006-5545

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now