FormMail remote usage

Risk Level: Low risk vulnerability  Low

Check or Attack Name: FormMailUse

Platforms: FormMail, Common Gateway Interface (CGI)
Description:

The FormMail CGI program contains a vulnerability that allows remote sites to make use of your web server's resources by using your FormMail program for their own sites. This is present in versions of FormMail prior to v1.3 by Matt Wright.

Remedy:

Monitor your network for unauthorized access to your web server until you can upgrade to the latest version of FormMail.

References:

FormMail at Matt's Script Archive Web Site, FormMail Information, http://worldwidemart.com/scripts/formmail.shtml


X-Force Logo
Know Your Risks