WelcomeEnterpriseSmall BusinessHome & Home OfficePartnersAbout Symantec
SYM06-021
October 19, 2006
Symantec Mail Security for Domino Server Relay

Revision History
None

Severity
Medium (can be used to send SPAM)

RemoteYes
LocalNo
Authentication RequiredNo
Exploit publicly availableNo

Overview
Premium Antispam feature of Symantec Mail Security for Domino is vulnerable to allowing a Domino server to be used as an unintended mail relay. This could be used to relay SPAM mail anonymously.

Vulnerable Products
ProductPlatformVersionSolution
Symantec Mail Security for Domino Server5.1.0All5.1.2.28

Details
The Premium Antispam feature of Symantec Mail Security for Domino fails to recognize and reject a specific SMTP recipient address format. The Domino mail server accepts mail addressed to SMTP addresses that conform to this unrecognized format. This mail is then relayed by the Domino server to remote users even when relaying is unintended. This security vulnerability can be exploited and used by spammers in an effort to remain anonymous.

Note: Customers utilizing Symantec Mail Security for Domino who have not enabled Premium AntiSpam are not at risk. This vulnerability only applies to those customers utilizing the Symantec Premium AntiSpam feature of Symantec Mail Security for Domino.

Symantec Response
Symantec Engineers have verified these issues and have added fixes to the latest product update (5.1.2.28). Symantec strongly recommends all customers utilizing Symantec Mail Security for Domino immediately apply the latest update.

Upgrade Information
Symantec Mail Security for Domino updates are available through the Platinum Support Web Site for Platinum customers or through the FileConnect -Electronic Software Distribution web site for all licensed users.


Symantec takes the security and proper functionality of our products very seriously. As founding members of the Organization for Internet Safety (OISafety), Symantec supports and follows the principles of responsible disclosure. Symantec also subscribes to the vulnerability disclosure guidelines outlined by the National Infrastructure Advisory Council (NIAC).

Please contact secure@symantec.com if you feel you have discovered a security issue in a Symantec product. A Symantec Product Security team member will contact you regarding your submission. Symantec strongly recommends using encrypted email for reporting vulnerability information to secure@symantec.com. The Symantec Product Security PGP key can be found at the end of this message.

Symantec has developed a Product Vulnerability Response document outlining the process we follow in addressing suspected vulnerabilities in our products. This document is available below.

Symantec-Product-Vulnerability-Response Symantec Vulnerability Response Policy Symantec Product Vulnerability Management PGP Key Symantec Product Vulnerability Management PGP Key


Copyright (c) 2009 by Symantec Corp.
Permission to redistribute this alert electronically is granted as long as it is not edited in any way unless authorized by Symantec Security Response. Reprinting the whole or part of this alert in any medium other than electronically requires permission from secure@symantec.com.

Disclaimer
The information in the advisory is believed to be accurate at the time of publishing based on currently available information. Use of the information constitutes acceptance for use in an AS IS condition. There are no warranties with regard to this information. Neither the author nor the publisher accepts any liability for any direct, indirect, or consequential loss or damage arising from use of, or reliance on, this information.

Symantec, Symantec products, Symantec Security Response, and secure@symantec.com are registered trademarks of Symantec Corp. and/or affiliated companies in the United States and other countries. All other registered and unregistered trademarks represented in this document are the sole property of their respective companies/owners.


Initial Post on: Thursday, 19-Oct-06 14:20:00
Last modified on: Thursday, 19-Oct-06 21:22:31