Check If Mailserver Answer To VRFY And EXPN Requests Network Vulnerability

Summary

The Mailserver on this host answers to VRFY and/or EXPN requests. VRFY and EXPN ask the server for information about an address. They are inherently unusable through firewalls, gateways, mail exchangers for part-time hosts, etc. OVS suggests that, if you really want to publish this type of information, you use a mechanism that legitimate users actually know about, such as Finger or HTTP.

Solution

Disable VRFY and/or EXPN on your Mailserver. For postfix add 'disable_vrfy_command=yes' in 'main.cf'. For Sendmail add the option 'O PrivacyOptions=goaway'.

References

http://cr.yp.to/smtp/vrfy.html

Updated on 2015-03-25

Severity

Classification

CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:N/I:N/A:P

Related Vulnerabilities

Sendmail mail.local DOS
Microsoft Windows SMTP Server MX Record Denial of Service Vulnerability
poprelayd & sendmail authentication problem
Exim < 4.72 RC2 Multiple Vulnerabilities
Quick 'n Easy Mail Server SMTP Request Remote Denial Of Service Vulnerability

Check if Mailserver answer to VRFY and EXPN requests

Take action and discover your vulnerabilities