Postfix IPv6 mail relay
| postfix-ipv6-mail-relay (19218) |  Low Risk |
Description:
Postfix could allow a remote attacker perform mail relaying to any IPv6 MX host. If permit_mx_backup is enabled in smtpd_recipient_restrictions and /proc/net/if_inet6 is unavailable (Postfix is running in a chroot jail) a remote attacker could exploit this vulnerability and perform mail relaying.
Consequences:
Other
Remedy:
For Ubuntu Linux:
Refer to USN-74-2 February 04, 2005 for patch, upgrade, or suggested workaround information. See References.
For Red Hat Linux:
Refer to RHSA-2005:152-04 for patch, upgrade, or suggested workaround information. See References.
For other distributions:
Contact your vendor for upgrade or patch information.
References:
- BID-12445: Postfix IPv6 Unauthorized Mail Relay Vulnerability
- CVE-2005-0337: Postfix 2.1.3, when /proc/net/if_inet6 is not available and permit_mx_backup is enabled in smtpd_recipient_restrictions, allows remote attackers to bypass e-mail restrictions and perform mail relaying by sending mail to an IPv6 hostname.
- RHSA-2005-152: postfix security update
- SA14137: Ubuntu Postfix IPv6 Relaying Security Issue
- USN-74-1: Postfix vulnerability
- USN-74-2: Fixed Postfix packages for USN-74-1
Platforms Affected:
- Canonical Ubuntu 4.10
- RedHat Enterprise Linux 4 ES
- RedHat Enterprise Linux 4 Desktop
- RedHat Enterprise Linux 4 AS
- RedHat Enterprise Linux 4 WS
- Wietse Venema Postfix
Reported:
Feb 04, 2005
The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.
For corrections or additions please email xforce@iss.net