MailCarrier SMTP Buffer Overflow Vulnerability Network Vulnerability

Summary

The target is running at least one instance of MailCarrier in which the SMTP service suffers from a buffer overflow vulnerability. By sending an overly long EHLO command, a remote attacker can crash the SMTP service and execute arbitrary code on the target.

Solution

Upgrade to MailCarrier 3.0.1 or greater.

Severity

Classification

CVE CVE-2004-1638

CVSS	Base Score: 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

SMTP too long line
McAfee GroupShield for Exchange X-Header Security Bypass Vulnerability
A-V Tronics InetServ SMTP Denial of Service Vulnerability
Sendmail NULL Character CA SSL Certificate Validation Security Bypass Vulnerability
IMC SMTP EHLO Buffer Overrun

Take action and discover your vulnerabilities