Signature Detail
Short Name |
SMTP:EMAIL:MAIL-FROM-PIPE |
|---|---|
Severity |
Medium |
Recommended |
No |
Category |
SMTP |
Keywords |
MAIL FROM "|" |
Release Date |
2003/04/22 |
Update Number |
1213 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
SMTP: MAIL FROM "|"
This signature detects attempts to send shell commands through a SMTP e-mail message by exploiting the pipe passthrough vulnerability. Attackers can use the invalid "mail from |" as the return e-mail address to cause Sendmail to reroute data to another program.
Extended Description
A remote attacker could gain unauthorized access to a vulnerable system.
References
- CVE: CVE-1999-0203