|
Family: SMTP problems --> Category: infos
Courier Mail Server < 0.50.1 Remote Denial Of Service Vulnerability Vulnerability Scan
Vulnerability Scan Summary Checks version of Courier Mail Server
Detailed Explanation for this Vulnerability Test
Synopsis :
The remote mail server is vulnerable to a denial of service attack.
Description :
The remote host is running Courier Mail Server, an open-source mail
server for Linux and Unix.
According to its banner, the installed version of Courier is prone to
a remote denial of service vulnerability triggered when doing Sender
Policy Framework (SPF) data lookups. To exploit this flaw, an
attacker would need to control a DNS server and return malicious SPF
records in response to queries from the affected application.
Solution :
Upgrade to Courier version 0.50.1 or later.
Threat Level:
Low / CVSS Base Score : 2
(AV:R/AC:H/Au:NR/C:N/A:P/I:N/B:N)
Click HERE for more information and discussions on this network vulnerability scan.
|