Info

Disclosure

Sep 09, 2004

Discovery

Unknown

Dates

Exploit

Sep 09, 2004

Solution

Unknown

Description

MailEnable contains a flaw that may allow a remote denial of service. The issue is triggered when a domain server returns more than 100 DNS MX records, and will result in loss of availability for the SMTP.

Classification

Location: Remote/Network Access Required
Attack Type: Denial of Service
Impact: Loss of Availability
Exploit: Exploit Available
Disclosure: OSVDB Verified

Solution

Upgrade Standard to 1.8, Professional to 1.2, or higher, as it has been reported to fix this vulnerability. Additionally , MailEnable has released a patch to address this vulnerability.

Products

MailEnable Pty. Ltd.	MailEnable Standard Edition	1.71
MailEnable Pty. Ltd.	MailEnable Professional Edition	1.18

References

Security Tracker: 1011198
Secunia Advisory ID: 12493
ISS X-Force ID: 17305
Vendor URL: http://www.mailenable.com/
Vendor Specific Solution URL: http://www.mailenable.com/hotfix/MEW2KDNS.zip

Credit

Unknown or Incomplete

Direct URL: http://osvdb.org/36218

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

MailEnable Pty. Ltd.

MailEnable Standard Edition

MailEnable Professional Edition

References

Credit