Lucene search

MitreCVE-2000-0610

HistoryOct 13, 2000 - 4:00 a.m.

CVE-2000-0610

2000-10-1304:00:00

mitre

web.nvd.nist.gov

cve-2000-0610

netwin dmailweb

authentication bypass

mail relay

cyber security

nvd

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

AI Score

7.3

Confidence

Low

EPSS

0.003

Percentile

68.6%

JSON

NetWin dMailWeb and cwMail 2.6g and earlier allows remote attackers to bypass authentication and use the server for mail relay via a username that contains a carriage return.

Affected configurations

Nvd

Node

netwincwmailMatch2.6g

netwindmailwebMatch2.6g

VendorProductVersionCPE
netwincwmail2.6gcpe:2.3:a:netwin:cwmail:2.6g:*:*:*:*:*:*:*
netwindmailweb2.6gcpe:2.3:a:netwin:dmailweb:2.6g:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
netwin	cwmail	2.6g	cpe:2.3:a:netwin:cwmail:2.6g:::::::*
netwin	dmailweb	2.6g	cpe:2.3:a:netwin:dmailweb:2.6g:::::::*

References

archives.neohapsis.com/archives/bugtraq/2000-06/0243.html

www.securityfocus.com/bid/1390

exchange.xforce.ibmcloud.com/vulnerabilities/4770

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

AI Score

7.3

Confidence

Low

EPSS

0.003

Percentile

68.6%

JSON

Related for CVE-2000-0610