CVE-2023-51764 — SMTP Smuggling: Insufficient Verification of Data Authenticity in Postfix

CWE-345 — Insufficient Verification of Data Authenticity CWE-451 — User Interface (UI) Misrepresentation of Critical Information12 documents9 sources

Severity

5.3MEDIUMNVD

EPSS

27.1%

top 3.62%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Postfix Fedoraproject Fedora Redhat Enterprise Linux

Timeline

PublishedDec 24

Latest updateJan 31

Description

Postfix through 3.8.5 allows SMTP smuggling unless configured with smtpd_data_restrictions=reject_unauth_pipelining and smtpd_discard_ehlo_keywords=chunking (or certain other options that exist in recent versions). Remote attackers can use a published exploitation technique to inject e-mail messages with a spoofed MAIL FROM address, allowing bypass of an SPF protection mechanism. This occurs because Postfix supports . but some other popular e-mail servers do not. To prevent attack variants (by a…

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:NExploitability: 3.9 | Impact: 1.4

Affected Packages2 packages

▶NVDpostfix/postfix3.6.0 — 3.6.13+3

▶Debianpostfix/postfix< 3.5.23-0+deb11u1+3

Also affects: Fedora 38, 39, Enterprise Linux 8.0, 9.0

🔴Vulnerability Details

GHSA

GHSA-j5jm-hg4x-w8rx: Postfix through 3↗2023-12-24

▶

OSV

CVE-2023-51764: Postfix through 3↗2023-12-24

▶

CVEList

CVE-2023-51764: Postfix through 3↗2023-12-24

▶

🔍Detection Rules

Suricata

ET EXPLOIT Inbound Setup Message from SMTP Smuggling Tool↗2024-01-05

▶

Suricata

ET EXPLOIT Inbound Smuggling Message from SMTP Smuggling Tool M2↗2024-01-05

▶

Suricata

ET EXPLOIT Inbound Smuggling Message from SMTP Smuggling Tool M1↗2024-01-05

▶

📋Vendor Advisories

Ubuntu

Postfix update↗2024-01-31

▶

Ubuntu

Postfix vulnerability↗2024-01-22

▶

Red Hat

postfix: SMTP smuggling vulnerability↗2023-12-18

▶

Microsoft

▶

Debian

CVE-2023-51764: postfix - Postfix through 3.8.5 allows SMTP smuggling unless configured with smtpd_data_re...↗2023

▶