Stalkerlab's Mailers 1.1.2 CGI Mail Spoofing Vulnerability

Solution:
Currently the SecurityFocus staff are not aware of any vendor supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: vuldb@securityfocus.com.

Work Around provided by the poster of this vulnerability:

"There is no fail safe manner in which to mitigate the risk posed by this vulnerability. Until the vendor provides a solution you may wish to disable this software. It should be noted in order to achieve this you will need to either rename the binary(ies), change the execution permissions or remove the package entirely as an intruder may still exploit this problem if the package is resident in the server, even if it is not in active use."



 

Privacy Statement
Copyright 2010, SecurityFocus