Info

Disclosure

Mar 11, 1998

Discovery

Unknown

Dates

Exploit

Mar 11, 1998

Solution

Unknown

Description

MDaemon contains a flaw that allows a remote attacker to crash the server. The issue is due to a buffer overflow condition in the SMTP service. By sending a HELO command containing 1024 or more characters to port 25, an attacker will crash the server.

Classification

Location: Remote / Network Access
Attack Type: Denial of Service, Input Manipulation
Impact: Loss of Integrity, Loss of Availability
Exploit: Exploit Public

Solution

Upgrade to version 2.71 Service Pack 2 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Products

Alt-N Technologies, Ltd.

MDaemon

2.71 SP1

References

ISS X-Force ID: 1834
CVE ID: 1999-0284 (see also: NVD)
Related OSVDB ID: 5970 6031 6118
Bugtraq ID: 8622
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/1998_1/0374.html
Generic Exploit URL: http://downloads.securityfocus.com/vulnerabilities/exploits/heloexpl.c
Vendor URL: http://www.altn.com/products/default.asp?product%5Fid=MDaemon

Credit

Aleph One - aleph1dfw.net -

Direct URL: http://osvdb.org/6117