Vulnerability Details CVE-2003-0285
IBM AIX 5.2 and earlier distributes Sendmail with a configuration file (sendmail.cf) with the (1) promiscuous_relay, (2) accept_unresolvable_domains, and (3) accept_unqualified_senders features enabled, which allows Sendmail to be used as an open mail relay for sending spam e-mail.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.012
EPSS Ranking 77.8%
CVSS Severity
CVSS v2 Score 5.0
References
- http://marc.info/?l=bugtraq&m=105284689228961&w=2
- http://security.sdsc.edu/advisories/2003.05.13-AIX-sendmail.txt
- http://www.kb.cert.org/vuls/id/814617
- http://www.securityfocus.com/bid/7580
- https://exchange.xforce.ibmcloud.com/vulnerabilities/11993
- http://marc.info/?l=bugtraq&m=105284689228961&w=2
- http://security.sdsc.edu/advisories/2003.05.13-AIX-sendmail.txt
- http://www.kb.cert.org/vuls/id/814617
- http://www.securityfocus.com/bid/7580
- https://exchange.xforce.ibmcloud.com/vulnerabilities/11993
Products affected by CVE-2003-0285
-
cpe:2.3:o:ibm:aix:-
-
cpe:2.3:o:ibm:aix:1.2.1
-
cpe:2.3:o:ibm:aix:1.3
-
cpe:2.3:o:ibm:aix:2.2.1
-
cpe:2.3:o:ibm:aix:3.1
-
cpe:2.3:o:ibm:aix:3.2
-
cpe:2.3:o:ibm:aix:3.2.0
-
cpe:2.3:o:ibm:aix:3.2.4
-
cpe:2.3:o:ibm:aix:3.2.5
-
cpe:2.3:o:ibm:aix:4
-
cpe:2.3:o:ibm:aix:4.0
-
cpe:2.3:o:ibm:aix:4.1
-
cpe:2.3:o:ibm:aix:4.1.1
-
cpe:2.3:o:ibm:aix:4.1.2
-
cpe:2.3:o:ibm:aix:4.1.3
-
cpe:2.3:o:ibm:aix:4.1.4
-
cpe:2.3:o:ibm:aix:4.1.5
-
cpe:2.3:o:ibm:aix:4.2
-
cpe:2.3:o:ibm:aix:4.2.0
-
cpe:2.3:o:ibm:aix:4.2.1
-
cpe:2.3:o:ibm:aix:4.2.1.12
-
cpe:2.3:o:ibm:aix:4.3
-
cpe:2.3:o:ibm:aix:4.3.0
-
cpe:2.3:o:ibm:aix:4.3.1
-
cpe:2.3:o:ibm:aix:4.3.2
-
cpe:2.3:o:ibm:aix:4.3.3
-
cpe:2.3:o:ibm:aix:5
-
cpe:2.3:o:ibm:aix:5.1
-
cpe:2.3:o:ibm:aix:5.1.0.10
-
cpe:2.3:o:ibm:aix:5.1l
-
cpe:2.3:o:ibm:aix:5.2