Improper Configuration of NOVRFY and NOEXPN Options in HP-UX 11.00 and 11.11 Sendmail.cf File

Improper Configuration of NOVRFY and NOEXPN Options in HP-UX 11.00 and 11.11 Sendmail.cf File

CVE-2003-1362 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:N/A:N

Bastille B.02.00.00 of HP-UX 11.00 and 11.11 does not properly configure the (1) NOVRFY and (2) NOEXPN options in the sendmail.cf file, which could allow remote attackers to verify the existence of system users and expand defined sendmail aliases.

Learn more about our User Device Pen Test.