Courier < 0.45 Multiple Remote Overflows

critical Nessus Plugin ID 12102

Language:

Synopsis

The remote SMTP server has multiple buffer overflow vulnerabilities.

Description

According to its version number, the version of Courier MTA running on the remote host has multiple buffer overflow vulnerabilities. A remote attacker could exploit this to crash the service, or possibly execute arbitrary code.

Solution

Upgrade to Courier 0.45 or later.

Plugin Details

Severity: Critical

ID: 12102

File Name: courier_overflows.nasl

Version: 1.15

Type: remote

Family: SMTP problems

Published: 3/14/2004

Updated: 7/6/2018

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.8

CVSS v2

Risk Factor: Critical

Base Score: 10

Temporal Score: 7.4

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Information

Exploit Ease: No known exploits are available

Vulnerability Publication Date: 3/11/2004

Reference Information

CVE: CVE-2004-0224

BID: 9845

Detections

Analytics