Red Hat Sendmail Localhost.Localdomain Email Spoofing Vulnerability

Bugtraq ID: 23742
Class: Configuration Error
CVE: CVE-2006-7176
Remote: Yes
Local: No
Published: May 01 2007 12:00AM
Updated: May 03 2010 06:12PM
Credit: Nathan I Olson is credited with the discovery of this vulnerability
Vulnerable: Redhat Sendmail 8.13.1
Redhat Enterprise Linux WS 4
Redhat Enterprise Linux ES 4
Redhat Enterprise Linux Desktop Workstation 5 client
Redhat Enterprise Linux Desktop 5 client
Redhat Enterprise Linux AS 4
Redhat Enterprise Linux 5 Server
Redhat Desktop 4.0
Avaya SES 2.0
Avaya Messaging Storage Server MM3.0
Avaya Message Networking MN 3.1
Avaya Message Networking
Avaya IQ 5
Avaya Communication Manager 2.0.1
+ Avaya Communication Manager Server DEFINITY Server SI/CS
+ Avaya Communication Manager Server S8100
+ Avaya Communication Manager Server S8100
+ Avaya Communication Manager Server S8300
+ Avaya Communication Manager Server S8300
+ Avaya Communication Manager Server S8500
+ Avaya Communication Manager Server S8500
+ Avaya Communication Manager Server S8700
+ Avaya Communication Manager Server S8700
Avaya Communication Manager 2.0
+ Avaya Communication Manager Server DEFINITY Server SI/CS
+ Avaya Communication Manager Server S8100
+ Avaya Communication Manager Server S8100
+ Avaya Communication Manager Server S8300
+ Avaya Communication Manager Server S8300
+ Avaya Communication Manager Server S8500
+ Avaya Communication Manager Server S8500
+ Avaya Communication Manager Server S8700
+ Avaya Communication Manager Server S8700
Avaya Communication Manager 3.0
+ Avaya Communication Manager Server DEFINITY Server SI/CS
+ Avaya Communication Manager Server S8100
+ Avaya Communication Manager Server S8100
+ Avaya Communication Manager Server S8300
+ Avaya Communication Manager Server S8300
+ Avaya Communication Manager Server S8500
+ Avaya Communication Manager Server S8500
+ Avaya Communication Manager Server S8700
+ Avaya Communication Manager Server S8700
Avaya CCS 3.0
Avaya CCS 2.0
Avaya Aura SIP Enablement Services 3.0
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus