Unrestricted Mail Relay in NetWin dMailWeb and cwMail
CVE-2000-0611

Currently unrated

Key Information:

Vendor: Netwin
Status: Cwmail; Dmailweb
Vendor: CVE Published:; 23 June 2000

What is CVE-2000-0611?

The default configuration of NetWin dMailWeb and cwMail is vulnerable due to its trust in all POP servers. This misconfiguration allows attackers to bypass standard authentication mechanisms, potentially leading to unauthorized access and disruption of service. Attackers could exploit this flaw to relay emails without proper verification, effectively causing a denial of service for legitimate users. It is critical for administrators to review and secure their configurations to mitigate these risks.

References

http://archives.neohapsis.com/archives/bugtraq/2000-06/02...

mailing-listx_refsource_BUGTRAQ

https://exchange.xforce.ibmcloud.com/vulnerabilities/4771

vdb-entryx_refsource_XF

http://www.securityfocus.com/bid/1391

vdb-entryx_refsource_BID

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Jul 19, 2000
Vulnerability published
Jun 23, 2000

Netwin

What is CVE-2000-0611?

References

Timeline