Detections
Analytics

ITHouse Mail Server v1.04 To: Field Handling Overflow

critical Nessus Plugin ID 10455

Synopsis

The remote SMTP server is affected by a buffer overflow vulnerability.

Description

The remote SMTP server is ITHouse Mail Server. Versions 1.04 or earlier of this server are vulnerable to a buffer overrun which happens during the delivery routine of the mails if an attacker has sent a message with a too long 'To:' field.

An attacker may use this flaw to execute arbitrary code on this host.

*** Note : we could not check the version number of
*** the server, so this item may be a false positive.

Solution

Contact your vendor for the latest software release.

See Also

http://www.nessus.org/u?d5e98581

Plugin Details

Severity: Critical

ID: 10455

File Name: ithousemail_bof.nasl

Version: 1.24

Type: remote

Published: 7/2/2000

Updated: 7/13/2018

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.9

CVSS v2

Risk Factor: Critical

Base Score: 10

Temporal Score: 7.4

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Information

Exploit Ease: No known exploits are available

Vulnerability Publication Date: 6/1/2000

Reference Information

CVE: CVE-2000-0488

BID: 1285