Intrusion Prevention

Postfix.IPv6.Unauthorized.Mail.Relay

Description

This indicates a possible attempt to exploit a vulnerability in the way Postfix handles the relaying of e-mail messages.
In certain configurations Postfix becomes an open relay for mail addressed to an MX host with IPv6 addresses. An attacker can bypass e-mail restrictions and perform mail relaying by sending mail to an IPv6 hostname.

Affected Products

Wietse Venema Postfix 2.1.3
S.u.S.E. Linux Personal 9.2
S.u.S.E. Linux Personal 9.1
S.u.S.E. Linux Personal 9.0 x86_64
S.u.S.E. Linux Personal 9.0
S.u.S.E. Linux Personal 8.2
S.u.S.E. Linux 8.1
S.u.S.E. Linux 8.0 i386
S.u.S.E. Linux 8.0
RedHat Enterprise Linux WS 4
RedHat Enterprise Linux ES 4
RedHat Enterprise Linux AS 4
RedHat Desktop 4.0

Impact

Security Bypass.

Recommended Actions

Contact your vendor for upgrade or patch information.

CVE References

CVE-2005-0337