NI3
12-23-2003, 04:21 PM
CRITICAL:
Less critical
IMPACT:
Security Bypass
WHERE:
From remote
SOFTWARE:
Dada Mail 2.x
DESCRIPTION:
Two vulnerabilities have been identified in Dada Mail, allowing
malicious people to subscribe arbitrary people to the mailing list
and possibly bypass the login function.
The PIN generated to verify if a subscription request is genuine is
based on NON-random data. This makes it possible to derive the PIN
based on the email address alone and can be exploited to subscribe
anyone to the list.
If Dada mail has been configured with an empty password, it is
possible to login with any password. According to the vendor, the
password can't be set to an empty string through Dada Mail.
This have been reported to affect versions prior to 2.8.11.
SOLUTION:
Update to version 2.8.11.
[Only registered and activated users can see links]
PROVIDED AND/OR DISCOVERED BY:
Reported by vendor.
ORIGINAL ADVISORY:
[Only registered and activated users can see links]
Less critical
IMPACT:
Security Bypass
WHERE:
From remote
SOFTWARE:
Dada Mail 2.x
DESCRIPTION:
Two vulnerabilities have been identified in Dada Mail, allowing
malicious people to subscribe arbitrary people to the mailing list
and possibly bypass the login function.
The PIN generated to verify if a subscription request is genuine is
based on NON-random data. This makes it possible to derive the PIN
based on the email address alone and can be exploited to subscribe
anyone to the list.
If Dada mail has been configured with an empty password, it is
possible to login with any password. According to the vendor, the
password can't be set to an empty string through Dada Mail.
This have been reported to affect versions prior to 2.8.11.
SOLUTION:
Update to version 2.8.11.
[Only registered and activated users can see links]
PROVIDED AND/OR DISCOVERED BY:
Reported by vendor.
ORIGINAL ADVISORY:
[Only registered and activated users can see links]