| VID |
18096 |
| Severity |
30 |
| Port |
25 |
| Protocol |
TCP |
| Class |
SMTP |
| Detailed Description |
The GoodTech SMTP Server, according to its banner, has a denial of service vulnerability via the RCPT TO command. GoodTech SMTP Server version 5.14 and possibly earlier versions are vulnerable to a denial of service attack. By sending a RCPT TO command with an invalid argument, a remote attacker could cause the affected server to crash.
* Note: This check solely relied on the banner of the remote SMTP server to assess this vulnerability, so this might be a false positive.
* References:
http://lists.grok.org.uk/pipermail/full-disclosure/2005-June/034457.html
http://secunia.com/advisories/15623/
http://archives.neohapsis.com/archives/bugtraq/2005-06/0034.html
* Platforms Affected:
GoodTech Systems, GoodTech SMTP Server version 5.14 and earlier versions
Microsoft Windows Any version. |
| Recommendation |
Upgrade to the latest version of GoodTech SMTP Server (5.15 or later), available from the GoodTech SMTP Server Web site at http://www.goodtechsys.com/smtpdnt2000.asp |
| Related URL |
CVE-2005-1931 (CVE) |
| Related URL |
13888 (SecurityFocus) |
| Related URL |
20919 (ISS) |
|
