MailCarrier SMTP Buffer Overflow Vulnerability Network Vulnerability

Summary

The target is running at least one instance of MailCarrier in which the SMTP service suffers from a buffer overflow vulnerability. By sending an overly long EHLO command, a remote attacker can crash the SMTP service and execute arbitrary code on the target.

Solution

Upgrade to MailCarrier 3.0.1 or greater.

Severity

Classification

CVE CVE-2004-1638
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Exchange XEXCH50 Remote Buffer Overflow
McAfee GroupShield for Exchange X-Header Security Bypass Vulnerability
MailCarrier SMTP Buffer Overflow Vulnerability
GNU glibc Remote Heap Buffer Overflow Vulnerability (Exim)
Mail relaying (thorough test)

Take action and discover your vulnerabilities