CVE-2023-51765
First published: Sun Dec 24 2023(Updated: )
escription: By exploiting interpretation differences of the SMTP protocol, it is possible to smuggle/send spoofed e-mails - hence SMTP smuggling - while still passing SPF alignment checks. During this research, two types of SMTP smuggling, outbound and inbound, were discovered. These allowed sending spoofed e-mails from millions of domains (e.g., admin[@]outlook.com) to millions of receiving SMTP servers (e.g., Amazon, PayPal, eBay). Identified vulnerabilities in Microsoft and GMX were quickly fixed, however, SEC Consult urges companies using the also affected Cisco Secure Email product to manually update their vulnerable default configuration. References: <a href="https://sec-consult.com/blog/detail/smtp-smuggling-spoofing-e-mails-worldwide/">https://sec-consult.com/blog/detail/smtp-smuggling-spoofing-e-mails-worldwide/</a>
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| <8.18.0.2 | ||
| <11.0 | ||
| =8.0 | ||
| =9.0 | ||
| redhat/sendmail | <8.18.0.2 | 8.18.0.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://sec-consult.com/blog/detail/smtp-smuggling-spoofing-e-mails-worldwide/
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=2255870
- https://bugzilla.redhat.com/show_bug.cgi?id=2255869
- http://www.openwall.com/lists/oss-security/2023/12/24/1
- http://www.openwall.com/lists/oss-security/2023/12/25/1
- http://www.openwall.com/lists/oss-security/2023/12/26/5
- http://www.openwall.com/lists/oss-security/2023/12/29/5
- http://www.openwall.com/lists/oss-security/2023/12/30/1
- http://www.openwall.com/lists/oss-security/2023/12/30/3
- https://access.redhat.com/security/cve/CVE-2023-51765
- https://bugzilla.suse.com/show_bug.cgi?id=1218351
- https://fahrplan.events.ccc.de/congress/2023/fahrplan/events/11782.html
- https://github.com/freebsd/freebsd-src/commit/5dd76dd0cc19450133aa379ce0ce4a68ae07fb39#diff-afdf514b32ac88004952c11660c57bc96c3d8b2234007c1cbd8d7ed7fd7935cc
- https://lwn.net/Articles/956533/
- https://www.openwall.com/lists/oss-security/2023/12/21/7
- https://www.openwall.com/lists/oss-security/2023/12/22/7
- https://www.youtube.com/watch?v=V8KPV96g1To
- https://lists.debian.org/debian-lts-announce/2024/06/msg00004.html
- agent/type
- agent/remedy
- agent/first-publish-date
- agent/softwarecombine
- agent/author
- agent/weakness
- agent/severity
- agent/event
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2023-51765
- agent/software-canonical-lookup
- agent/references
- agent/tags
- agent/description
- collector/nvd-api
- source/NVD
- agent/last-modified-date
- collector/mitre-cve
- source/MITRE
- package-manager/redhat
- vendor/sendmail
- canonical/sendmail sendmail
- vendor/freebsd
- canonical/freebsd freebsd
- vendor/redhat
- canonical/redhat enterprise linux
- version/redhat enterprise linux/8.0
- version/redhat enterprise linux/9.0