CVE-2010-0230

SUSE Linux Enterprise 10 SP3 (SLE10-SP3) and openSUSE 11.2 configures postfix to listen on all network interfaces, which might allow remote attackers to bypass intended access restrictions.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 44%
VendorProductVersion
suseopensuse
11.2
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
postfix
bullseye
3.5.25-0+deb11u1
fixed
bookworm
3.7.11-0+deb12u1
fixed
sid
3.9.0-3
fixed
trixie
3.9.0-3
fixed
Common Weakness Enumeration
References
http://lists.opensuse.org/opensuse-security-announce/2010-01/msg00007.html
http://lists.opensuse.org/opensuse-security-announce/2010-02/msg00004.html
http://lists.opensuse.org/opensuse-security-announce/2010-01/msg00007.html
http://lists.opensuse.org/opensuse-security-announce/2010-02/msg00004.html