RE: Cisco PIX Firewall MailGuard Vulnerability

From: Jerome Tytgat (j.tytgat@energis.fr)
Date: 09/27/01

• Previous message: Fabio Pietrosanti (naif): "Re: Cisco PIX Firewall MailGuard Vulnerability"
• In reply to: Fabio Pietrosanti (naif): "Re: Cisco PIX Firewall MailGuard Vulnerability"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

From: Jerome Tytgat <j.tytgat@energis.fr>
To: <vuln-dev@securityfocus.com>
Subject: RE: Cisco PIX Firewall MailGuard Vulnerability
Date: Thu, 27 Sep 2001 09:26:31 +0200
Message-ID: <NEBBJOKLKIIEHOEIPMLKOELDFEAA.j.tytgat@energis.fr>

Here what i've seen looking in the release notes of
the 6.1.1 :

CSCdu47003
 Yes
 Able to pass disallowed SMTP command thru PIX, by sending after mail
 

So it looks like if you send commands AFTER the dot, they are not secured.
Hum seems that cisco did not remove the last vulnerability but
only moved it further. But I was not able to confirm this (with a 5.3.1).

_______________________________________________________________
ENERGIS
Jerome Tytgat
Network and Security Administrator
mailto:j.tytgat@energis.fr http://www.energis.fr
tel : (33) 03 88 78 77 77 2, rue paul Rohmer
fax : (33) 03 88 78 80 00 F-67087 Strasbourg Cedex 2
_______________________________________________________________

 

---

• Previous message: Fabio Pietrosanti (naif): "Re: Cisco PIX Firewall MailGuard Vulnerability"
• In reply to: Fabio Pietrosanti (naif): "Re: Cisco PIX Firewall MailGuard Vulnerability"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Mailing-Lists  > securityfocus  > vuln-dev  > 2001-09