Preface: SMTP email name overflowLogo -Internet Security Systems

SMTP email name overflow
advICE :Intrusions : 2001009
 FAQ
Oh my gosh, I'm being HACKED!!!
How do I report the hacker to my ISP?
I'm seeing lots of attacks, is this normal?
Summary

Intrusion

Details

Intruder is attempting to gain control of the e-mail service through a buffer overflow in the MAIL FROM or RCPT TO command.

 more information
advICE: Buffer overflows  
More about this general class of attacks, which is the root cause of many attacks on the Internet.  
BugtraqID: 1285   ITHouse Mail Server 1.04 Buffer Overflow Vulnerability
 
BugtraqID: 1229   Lotus Domino Server ESMTP Buffer Overflow Vulnerability
 
BugtraqID: 759   Skyfull Mail Server MAIL FROM Buffer Overflow Vulnerability
 
BugtraqID: 748   Netscape Messaging Server RCPT TO DoS Vulnerability
 
BugtraqID: 633   Computalynx CMail SMTP Buffer Overflow Vulnerability
 
BugtraqID: 632   NetcPlus @Work SmartServer3 SMTP Buffer Overflow
 
BugtraqID: 153   SLMail 3.0.2421 Buffer Overflow 'Mail From' Vulnerability
 
http://www.seattlelab.com/slmail/  
 
CVE-1999-0873   Buffer overflow in Skyfull mail server via MAIL FROM command.
 
CVE-1999-0102   Buffer overflow in SLmail 3.x MAIL FROM
 
CVE-2000-0452   Buffer overflow in Lotus Domino Server 5.0.1 MAIL FROM
 

 parametric information
lengthThe length of the email name; if it is longer than a few hundred characters, then it may be a buffer overflow attempt.
recipientThe initial portion of the recipient's name.
senderThe initial portion of the sender's name.

 configuration for this item
smtp.maxname200The maximum length of a mail address.

 
Version appeared:
Privacy Policy |  Copyright Info