Korean

<< Back VID 18053 Severity 40 Port 25 Protocol TCP Class SMTP Detailed Description The version of Exim SMTP server is prior to 4.21. Exim, developed by the University of Cambridge, is an open-source Mail Transfer Agent for various Unix platforms. Exim versions prior to 4.21 have a heap overflow vulnerability by a long HELO command. The problem occurs due to insufficient bounds checking when handling user-supplied SMTP EHLO/HELO data. This could be possible to trigger a denial of service condition. Although it is believed to be unlikely, this also could theoretically be exploited to execute arbitrary code with the privileges of Exim. * Note: This check solely relied on the banner of the remote SMTP server to assess this vulnerability, so this might be a false positive. * References: http://archives.neohapsis.com/archives/bugtraq/2003-09/0003.html * Platforms Affected: Exim version 4.21 prior Conectiva Linux 7.0 ~ 9.0 Debian Linux 3.0 Gentoo Linux Any version Unix Any version Recommendation Upgrade to the latest version of Exim (4.21 or later), as listed in Exim-Announce Mailing List posting dated Thu, 14 Aug 2003 09:31:54 +0100 (BST) at http://www.exim.org/pipermail/exim-announce/2003q3/000094.html For Debian GNU/Linux 3.0 (woody): Upgrade to the latest exim package (3.35-3woody1 or later), as listed in Debian Security Advisory DSA-376-2, "exim -- buffer overflow" at http://www.debian.org/security/2003/dsa-376 For Gentoo Linux: Upgrade to the latest version of Exim (4.21 or later), as listed in Gentoo Linux Security Announcement 200309-09, "exim" at http://www-1.ibm.com/services/continuity/recover1.nsf/MSS/MSS-OAR-E01-2003.1148.1 For Conectiva Linux 7.0, 8.0, 9.0: Upgrade to the latest Exim package, as listed in Conectiva Linux Security Advisory CLSA-2003:735, "exim" at http://distro.conectiva.com/atualizacoes/index.php?id=a&anuncio=000735 For other distributions: Contact your vendor for upgrade or patch information. Related URL CVE-2003-0743 (CVE) Related URL 8518 (SecurityFocus) Related URL 13067 (ISS)