| VID |
12067 |
| Severity |
40 |
| Port |
25 |
| Protocol |
TCP |
| Class |
SMTP |
| Detailed Description |
The MailCarrier SMTP server is vulnerable to a buffer overflow vulnerability in the EHLO command. MailCarrier is a full-featured mail server with the latest security and anti-SPAM functions for Microsoft Windows platforms. It supports SSL communication and SMTP/POP3 authentication methods based on SASL and NTLM that do not transmit message and/or password in clear text. MailCarrier version 2.51 is vulnerable to a buffer overflow in the EHLO and HELO commands. By sending an overly long EHLO or HELO command, a remote attacker can crash the affected SMTP service and execute arbitrary code on the system.
* References:
http://www.osvdb.org/11174
http://www.securiteam.com/windowsntfocus/6R0020ABPU.html
http://archives.neohapsis.com/archives/bugtraq/2004-10/0274.html
http://www.tabslab.com/en/product/mailcarrier20/
http://packetstormsecurity.nl/0410-exploits/mailcarrier.txt
* Platforms Affected:
Tabs Labortorties, MailCarrier 2.51
Microsoft Windows Any version |
| Recommendation |
Upgrade to the latest version of MailCarrier Mail Server (3.0.1 or later), available from Tabs Laboratories Web site at http://www.tabslab.com/ |
| Related URL |
CVE-2004-1638 (CVE) |
| Related URL |
11535 (SecurityFocus) |
| Related URL |
17861 (ISS) |
|
