Description
The remote web server is running a version of PHP which is 4.2.2 or older. This version has a bug in its mail() function which does not properly sanitize user input. As a result, users can forge email to make it look like it is coming from a different source that the server.
Solution
Upgrade to PHP 4.2.3 or higher.
Plugin Details
Nessus ID: 11444
Risk Information
Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N