poprelayd script prior to 2.0 in Cobalt RaQ3 servers allows remote malicious users to bypass authentication for relaying by causing a "POP login by user" string that includes the attacker's IP address to be injected into the maillog log file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sun cobalt raq 3i |