|
Family: SMTP problems --> Category: infos
Inframail SMTP Server Remote Buffer Overflow Vulnerability Vulnerability Scan
Vulnerability Scan Summary Checks for remote buffer overflow vulnerability in Inframail SMTP Server
Detailed Explanation for this Vulnerability Test
Synopsis :
The remote SMTP server is vulnerable to a buffer overflow attack.
Description :
The remote host is running the SMTP server component of Inframail, a
commercial suite of network servers from Infradig Systems.
According to its banner, the installed version of Inframail suffers
from a buffer overflow vulnerability that arises when the SMTP server
component processes a MAIL FROM command with an excessively long
argument (around 40960 bytes). Successful exploitation will cause the
service to crash and may allow arbitrary code execution.
See also :
http://reedarvin.thearvins.com/20050627-01.html
http://archives.neohapsis.com/archives/fulldisclosure/2005-06/0348.html
Solution :
Upgrade to Inframail 7.12 or later.
Threat Level:
High / CVSS Base Score : 7
(AV:R/AC:L/Au:NR/C:P/A:P/I:P/B:N)
Click HERE for more information and discussions on this network vulnerability scan.
|