CVE-2000-0448 Information

Description

The WebShield SMTP Management Tool version 4.5.44 does not properly restrict access to the management port when an IP address does not resolve to a hostname which allows remote attackers to access the configuration via the GET_CONFIG command.

Reference

http://www.osvdb.org/326 http://www.securityfocus.com/bid/1253 http://www.securityfocus.com/templates/archive.pike?list=1&msg=6C740781F92BD411831F0090273A8AB806FD4A@exchange.servers.delphis.net