|Title:||XTramail MTA 'HELO' denial|
There is a buffer overflow
when this MTA is issued the 'HELO' command
passed by an argument that is too long.
The HELO command is typically one of the first
commands required by a mail server. The command
is used by the mail server as a first attempt to
allow the client to identify itself. As such, this
command occurs before there is any authentication
or validation of mailboxes, etc.
This problem may allow an attacker to
execute arbitrary code on this computer,
or to disable your ability to send or
Solution : contact your vendor for a patch.
Risk factor : High
BugTraq ID: 791|
Common Vulnerability Exposure (CVE) ID: CVE-1999-1511
Bugtraq: 19991110 Multiples Remotes DoS Attacks in Artisoft XtraMail v1.11 Vulnerability (Google Search)
XForce ISS Database: xtramail-pass-dos(3488)
|Copyright||This script is Copyright (C) 1999 Renaud Deraison|
|This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.