• info
• discussion
• exploit
• solution
• references

Hypermail CGI Mail Open Relay Vulnerability

Solution:
SuSE Linux have supplied an advisory (SA:2003:0012) and the following fixes:


HyperMail HyperMail 2.0 b25

• S.u.S.E. hypermail-2.0b29-37.alpha.rpm
  SuSE-7.1/Alpha
  ftp://ftp.suse.com/pub/suse/axp/update/7.1/ap2/hypermail-2.0b29-37.alp ha.rpm


• S.u.S.E. hypermail-2.0b29-37.src.rpm
  SuSE-7.1/Alpha
  ftp://ftp.suse.com/pub/suse/axp/update/7.1/zq1/hypermail-2.0b29-37.src .rpm


• S.u.S.E. hypermail-2.0b29-38.ppc.rpm
  SuSE-7.1/PPC
  ftp://ftp.suse.com/pub/suse/ppc/update/7.1/ap2/hypermail-2.0b29-38.ppc .rpm


• S.u.S.E. hypermail-2.0b29-38.src.rpm
  SuSE-7.1/PPC
  ftp://ftp.suse.com/pub/suse/ppc/update/7.1/zq1/hypermail-2.0b29-38.src .rpm


• S.u.S.E. hypermail-2.0b29-59.i386.rpm
  SuSE-7.1
  ftp://ftp.suse.com/pub/suse/i386/update/7.1/ap2/hypermail-2.0b29-59.i3 86.rpm


• S.u.S.E. hypermail-2.0b29-59.src.rpm
  SuSE-7.1
  ftp://ftp.suse.com/pub/suse/i386/update/7.1/zq1/hypermail-2.0b29-59.sr c.rpm

HyperMail HyperMail 2.1 .0

• S.u.S.E. hypermail-2.1.0-91.i386.rpm
  SuSE-7.2
  ftp://ftp.suse.com/pub/suse/i386/update/7.2/ap2/hypermail-2.1.0-91.i38 6.rpm


• S.u.S.E. hypermail-2.1.0-91.src.rpm
  SuSE-7.2
  ftp://ftp.suse.com/pub/suse/i386/update/7.2/zq1/hypermail-2.1.0-91.src .rpm

HyperMail HyperMail 2.1.2

• S.u.S.E. hypermail-2.1.2-141.i386.rpm
  SuSE-7.3
  ftp://ftp.suse.com/pub/suse/i386/update/7.3/ap2/hypermail-2.1.2-141.i3 86.rpm


• S.u.S.E. hypermail-2.1.2-141.src.rpm
  SuSE-7.3
  ftp://ftp.suse.com/pub/suse/i386/update/7.3/zq1/hypermail-2.1.2-141.sr c.rpm


• S.u.S.E. hypermail-2.1.2-40.sparc.rpm
  SuSE-7.3/Sparc
  ftp://ftp.suse.com/pub/suse/sparc/update/7.3/ap2/hypermail-2.1.2-40.sp arc.rpm


• S.u.S.E. hypermail-2.1.2-40.src.rpm
  SuSE-7.3/Sparc
  ftp://ftp.suse.com/pub/suse/sparc/update/7.3/zq1/hypermail-2.1.2-40.sr c.rpm


• S.u.S.E. hypermail-2.1.2-98.ppc.rpm
  SuSE-7.3/PPC
  ftp://ftp.suse.com/pub/suse/ppc/update/7.3/ap2/hypermail-2.1.2-98.ppc. rpm


• S.u.S.E. hypermail-2.1.2-98.src.rpm
  SuSE-7.3/PPC
  ftp://ftp.suse.com/pub/suse/ppc/update/7.3/zq1/hypermail-2.1.2-98.src. rpm

HyperMail HyperMail 2.1.3

• S.u.S.E. hypermail-2.1.3-234.i386.rpm
  SuSE-8.0
  ftp://ftp.suse.com/pub/suse/i386/update/8.0/ap4/hypermail-2.1.3-234.i3 86.rpm


• S.u.S.E. hypermail-2.1.3-234.src.rpm
  SuSE-8.0
  ftp://ftp.suse.com/pub/suse/i386/update/8.0/zq1/hypermail-2.1.3-234.sr c.rpm

HyperMail HyperMail 2.1.4

• S.u.S.E. hypermail-2.1.4-58.i586.patch.rpm
  SuSE-8.1
  ftp://ftp.suse.com/pub/suse/i386/update/8.1/rpm/i586/hypermail-2.1.4-5 8.i586.patch.rpm


• S.u.S.E. hypermail-2.1.4-58.i586.rpm
  SuSE-8.1
  ftp://ftp.suse.com/pub/suse/i386/update/8.1/rpm/i586/hypermail-2.1.4-5 8.i586.rpm


• S.u.S.E. hypermail-2.1.4-58.src.rpm
  SuSE-8.1
  ftp://ftp.suse.com/pub/suse/i386/update/8.1/rpm/src/hypermail-2.1.4-58 .src.rpm