|
Family: Denial of Service --> Category: infos
Kerio MailServer < 6.0.10 Vulnerability Scan
Vulnerability Scan Summary Checks for Kerio MailServer < 6.0.10
Detailed Explanation for this Vulnerability Test
Synopsis :
The remote mail server is vulnerable to multiple denial of service
attacks.
Description :
According to its banner, the remote host is running a version of Kerio
MailServer prior to 6.0.10. In those versions, crashes can occur when
downloading certain email messages in IMAP or Outlook with Kerio
Outlook Connector (KOC) or, under Linux, when parsing email messages
with multiple embedded 'eml' attachments.
See also :
http://www.kerio.com/kms_history.html
Solution :
Upgrade to Kerio MailServer 6.0.10 or newer.
Threat Level:
Low / CVSS Base Score : 1
(AV:R/AC:L/Au:R/C:N/A:P/I:N/B:N)
Click HERE for more information and discussions on this network vulnerability scan.
|