Vulnerability Details CVE-2001-1075
poprelayd script before 2.0 in Cobalt RaQ3 servers allows remote attackers to bypass authentication for relaying by causing a "POP login by user" string that includes the attacker's IP address to be injected into the maillog log file.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.035
EPSS Ranking 87.0%
CVSS Severity
CVSS v2 Score 5.0
References
- http://archives.neohapsis.com/archives/bugtraq/2001-07/0064.html
- http://archives.neohapsis.com/archives/bugtraq/2001-07/0150.html
- http://www.securityfocus.com/bid/2986
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6806
- http://archives.neohapsis.com/archives/bugtraq/2001-07/0064.html
- http://archives.neohapsis.com/archives/bugtraq/2001-07/0150.html
- http://www.securityfocus.com/bid/2986
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6806
Products affected by CVE-2001-1075
-
cpe:2.3:h:sun:cobalt_raq_3i:-