VULHUB ™

Alt-N MDaemon/WorldClient is prone to a vulnerability which may enable a remote user to send mail with spoofed headers. Remote users may submit a malicious form through the 'Form2Raw.exe' (included with WorldClient) utility, which will cause mail with attacker-supplied headers to be sent via the mail server. As a result, WorldClient may be used by unauthorized users to send email to arbitrary hosts. It has been reported that this utility is not accessible in the default configuration and that the utility may not be abused in this manner if properly configured.

Alt-N MDaemon/WorldClient is prone to a vulnerability which may enable a remote user to send mail with spoofed headers. Remote users may submit a malicious form through the 'Form2Raw.exe' (included with WorldClient) utility, which will cause mail with attacker-supplied headers to be sent via the mail server. As a result, WorldClient may be used by unauthorized users to send email to arbitrary hosts. It has been reported that this utility is not accessible in the default configuration and that the utility may not be abused in this manner if properly configured.