APP: BirghtMail-Anti-Spam-Access
This signature detects attempts to exploit a known vulnerability against Brightmail AntiSpam. Versions earlier than 6.0.2 are vulnerable. Attackers can exploit a hard-coded database administrator password vulnerability to bypass security restrictions and gain administrative access. This could allow attackers to modify the device behavior.
Extended Description
Symantec Brightmail AntiSpam is susceptible to a remote information disclosure vulnerability. This issue is due to a failure of the application to properly ensure that remote database access is properly disabled. In cases where the affected package was upgraded, rather than freshly installed, remote database access was not properly disabled. Remote access to the database may be simplified for attackers, as the database utilizes a static password. This vulnerability allows remote attackers to gain access to potentially sensitive database contents.
Affected Products
Symantec brightmail_anti-spam
Short Name
APP:BRG-MAIL-US-PASS
Severity
Minor
Recommended
False
Recommended Action
None
Category
APP
Keywords
BirghtMail-Anti-Spam-Access CVE-2005-1867 bid:13828
Release Date
07/25/2005
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3375
False Positive
Unknown
Vendors
Symantec
CVSS Score
7.5