| VID |
18038 |
| Severity |
30 |
| Port |
25 |
| Protocol |
TCP |
| Class |
SMTP |
| Detailed Description |
The Microsoft Windows 2000 SMTP server allows mail relaying due to a vulnerability in the authentication process.
An SMTP service installs by default as part of Windows 2000 server products, and can be selected for installation on Windows 2000 Professional. The SMTP server in Windows 2000 requires authentication before users are permitted to send mail. Due to a flaw in the authentication process of this SMTP service, it could allow an unauthorized user to successfully authenticate to the service using incorrect credentials.
An attacker who exploited the vulnerability could gain the SMTP service privileges and could only use the service to send mail. This vulnerability would allow an attacker to perform mail relaying via a vulnerable server.
* References:
http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/bulletin/MS01-037.asp
http://www.iss.net/security_center/static/6803.php |
| Recommendation |
Disable the SMTP service if it's an unneeded services.
-- OR --
Install the patch for this vulnerability from the follow site : http://www.microsoft.com/Downloads/Release.asp?ReleaseID=31181
* Note: This patch can be installed on systems running Windows 2000 Service Pack 1 or Service Pack 2. The fix for this issue will be included in Windows 2008 Server. |
| Related URL |
CVE-2001-0504 (CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
