SMTP service in (1) Microsoft Windows 2000 and (2) Internet Mail Connector (IMC) in Exchange Server 5.5 does not properly handle responses to NTLM authentication, which allows remote attackers to perform mail relaying via an SMTP AUTH command using null session credentials.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2003-04-02T05:00:00
Updated: 2024-08-08T02:35:17.425Z
Reserved: 2002-02-02T00:00:00
Link: CVE-2002-0054
Vulnrichment
No data.
NVD
Status : Modified
Published: 2002-03-08T05:00:00.000
Modified: 2024-11-20T23:38:11.507
Link: CVE-2002-0054
Redhat
No data.