Vulnerability Details CVE-2000-0448
The WebShield SMTP Management Tool version 4.5.44 does not properly restrict access to the management port when an IP address does not resolve to a hostname, which allows remote attackers to access the configuration via the GET_CONFIG command.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 69.3%
CVSS Severity
CVSS v2 Score 5.0
References
- http://www.osvdb.org/326
- http://www.securityfocus.com/bid/1253
- http://www.securityfocus.com/templates/archive.pike?list=1&msg=6C740781F92BD411831F0090273A8AB806FD4A%40exchange.servers.delphis.net
- http://www.osvdb.org/326
- http://www.securityfocus.com/bid/1253
- http://www.securityfocus.com/templates/archive.pike?list=1&msg=6C740781F92BD411831F0090273A8AB806FD4A%40exchange.servers.delphis.net
Products affected by CVE-2000-0448
-
cpe:2.3:a:network_associates:webshield:4.5.44