| VID |
18098 |
| Severity |
30 |
| Port |
25 |
| Protocol |
TCP |
| Class |
SMTP |
| Detailed Description |
The CommuniGate Pro SMTP server, according to its banner, has a denial of service vulnerability in the LIST module. CommuniGate Pro is a commercial messaging server. CommuniGate Pro versions prior to 4.3c3 are vulnerable to a denial of service attack, caused due to an unspecified error in the LIST module when handling certain multipart messages. A remote attacker could exploit this vulnerability to crash the affected server by sending a specially-crafted multipart message to a list.
* Note: This check solely relied on the banner of the remote SMTP server to assess this vulnerability, so this might be a false positive.
* References:
http://www.stalker.com/CommuniGatePro/History.html
http://secunia.com/advisories/14604/
* Platforms Affected:
Stalker Software Inc., CommuniGate Pro versions prior to 4.3c3
Any operating system Any version |
| Recommendation |
Upgrade to the latest version of CommuniGate Pro (4.3c3 or later), available from the CommuniGate Pro Web site at http://www.stalker.com/CommuniGatePro/default.html |
| Related URL |
CVE-2005-1007 (CVE) |
| Related URL |
13001 (SecurityFocus) |
| Related URL |
19961 (ISS) |
|
