View Issue Details

Jump to NotesJump to History
IDProjectCategoryView StatusDate SubmittedLast Update
0005793Kali LinuxKali Websites & Docspublic2019-11-16 18:372019-11-26 10:34
ReporterNitin_420 Assigned Tosbrun  
PrioritynormalSeverityminorReproducibilityalways
Status closedResolutionno change required 
Product Version2019.3 
Summary0005793: VULNERABILITY NAME: DMARC RECORD MISSING [ kali.org ]
Description

Hello team,
I Am Nitin Gavhane and I Am Ethical Hacker. Find one vulnerability in your site ( kali.org ) ...

URL: https://mxtoolbox.com/SuperTool.aspx?action=mx%3akali.org&run=toolpage

Impact :
1) Spammers can forge the "From" address on email messages to make messages appear to come from someone in your domain.
2) If spammers use your domain to send spam or junk email, your domain quality is negatively affected.
3) People who get forged emails can mark them as spam or junk, which can impact authentic messages sent from your domain.

Steps To Reproduce

Steps To ReproduceREPRODUCE STEPS (POC-ATTACHED IMAGE):-

  1. Use- https://mxtoolbox.com

  2. ENTER THE WEBSITE ( kali.org ) and Click Button.

  3. YOU WILL SEE THE FAULT(No DMARC Record found).

  4. In the new page that loads change MXLookup to DMARCLookup.

Exploit:

Testing I am forgering [email protected]

  1. go to https://emkei.cz/
  2. Fill all the details
    like :
                                 Name - support kali
                                 Email - [email protected]
                                 To - [email protected]
                              etc .
    send email.
  3. it will directly send a mail from [email protected] to my email
Additional Information

If you are encountering this error of No DMARC Record found, this means that your domain does not have a published DMARC record. DMARC Records are published via DNS as a text(TXT) record. They will let receiving servers know what they should do with non-aligned email received from your domain.

Domain-based Message Authentication, Reporting, and Conformance (DMARC) is a mechanism for improving mail handling by mail-receiving organizations. The ultimate purpose of DMARC, according to RFC-7489 is to provide a “mechanism by which email operators leverage existing authentication and policy advertisement technologies to enable both message-stream feedback and enforcement of policies against unauthenticated email. Email originating organizations utilize DMARC in order to express domain-level distribution policies/preferences for message validation, disposition, and reporting

Activities

There are no notes attached to this issue.

Issue History

Date Modified Username Field Change
2019-11-16 18:37 Nitin_420 New Issue
2019-11-26 10:34 sbrun Assigned To => sbrun
2019-11-26 10:34 sbrun Status new => closed
2019-11-26 10:34 sbrun Resolution open => no change required