Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> SMTP problems >> EXPN overflow


Vulnerability Assessment Details

EXPN overflow

Vulnerability Assessment Summary
EXPN and VRFY checks

Detailed Explanation for this Vulnerability Assessment

It was possible to make the remote mail server
crash when issuing a too long argument to the
EXPN command.

A possible hacker may use this flaw to prevent your organization from
receiving any mail, or to force your mail to go through another
mail server, noted as an MX.

Solution : upgrade your mail server or contact your vendor for a fix
Network Security Threat Level: High

Networks Security ID: 2412, 223

Vulnerability Assessment Copyright: This script is Copyright (C) 2001 Renaud Deraison

Cables, Connectors

Cisco Catalyst 2960S 24 Port Enterprise Gigabit Switch RJ45 1000Mbps Console SFP
$100.0
Cisco Catalyst 2960S 24 Port Enterprise Gigabit Switch RJ45 1000Mbps Console SFP pictureCisco WS-C3850-48P-S Catalyst 3850 Switch
$3000.0
Cisco WS-C3850-48P-S Catalyst 3850 Switch pictureNew x 7 Cisco AIR-PWRINJ3 Power Injector for 1100/1130AG/1200/1230AG/1240AG
$62.94
New x 7 Cisco AIR-PWRINJ3 Power Injector for 1100/1130AG/1200/1230AG/1240AG  pictureNew Sealed Cisco PWR-IE65W-PC-AC Power Module PWRIE65WPCAC
$219.94
New Sealed Cisco PWR-IE65W-PC-AC Power Module PWRIE65WPCAC  picture


Discussions

No Discussions have been posted on this vulnerability.