CVE-2005-0337
EPSS 0.85%
Description
Postfix 2.1.3, when /proc/net/if_inet6 is not available and permit_mx_backup is enabled in smtpd_recipient_restrictions, allows remote attackers to bypass e-mail restrictions and perform mail relaying by sending mail to an IPv6 hostname.
How to fix CVE-2005-0337
To remediate CVE-2005-0337, upgrade the affected package to a fixed version below.
- Debian/postfix—upgrade to 2.1.4-5 or later
Is CVE-2005-0337 being exploited?
Low — EPSS is 0.8%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 2.1.4-5