header-logo
Suggest Exploit
vendor:
NTMail
by:
SecurityFocus
3.3
CVSS
MEDIUM
Mail Relay Vulnerability
400
CWE
Product Name: NTMail
Affected Version From: 3.X
Affected Version To: 3.X
Patch Exists: NO
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2002

NTMail v3.X Mail Relay Vulnerability

NTMail v3.X is susceptible to being used as a mail relay for SPAM or other unsolicited email. Connecting to the mail server (tcp25) and issuing a 'mail from' command with <> as the data will allow an unathorized user to relay email via this server.

Mitigation:

Gordano's own JUCE product can be used to prevent mail relay attacks and other SPAM activity.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/297/info

NTMail v3.X is susceptible to being used as a mail relay for SPAM or other unsolicited email. Connecting to the mail server (tcp25) and issuing a 'mail from' command with <> as the data will allow an unathorized user to relay email via this server.

Gordano's own JUCE product (to prevent mail relay attacks and other SPAM activity) will not prevent NTMAIL v.3.x from being used as a mail relay.

Specify <> in the 'Mail From' field.

Navigation

Suggest Exploit

Services By CQR