CVE-2004-0833
EPSS 0.66%sendmail - pre-set password
發布日:2004/12/23修改日:2026/4/28
描述
Sendmail before 8.12.3 on Debian GNU/Linux, when using sasl and sasl-bin, uses a Sendmail configuration script with a fixed username and password, which could allow remote attackers to use Sendmail as an open mail relay and send spam messages.
受影響套件(2)
- Debian/sendmailfrom 0, < 8.13.1-13
- Debian/sendmailfrom 0, < 8.12.3-7.1