Info

Disclosure

Aug 01, 2005

Discovery

Unknown

Dates

Exploit

Aug 01, 2005

Solution

Unknown

Description

BusinessMail SMTP contains a flaw that may allow a remote attacker to crash the service. The issue is due to the SMTP HELO and MAIL FROM commands not properly sanitizing user input. By providing overly long strings to either command, the service will crash requiring restart.

Classification

Location: Remote / Network Access
Attack Type: Denial of Service, Input Manipulation
Impact: Loss of Integrity, Loss of Availability
Exploit: Exploit Public
Disclosure: OSVDB Verified

Solution

Upgrade to version 4.7 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Products

NetCplus

BUSINESSMAIL

4.60.00

References

Security Tracker: 1014602
Milw0rm: 1126 1164
Exploit Database: 1126 1164
Bugtraq ID: 14434
Secunia Advisory ID: 16306
CVE ID: 2005-2472 (see also: NVD)
ISS X-Force ID: 21636
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2007-06/0031.html
http://archives.neohapsis.com/archives/fulldisclosure/2005-08/0002.html
http://lists.grok.org.uk/pipermail/full-disclosure/2005-August/035647.html
http://marc.theaimsgroup.com/?l=bugtraq&m=112291456305261&w=2
Generic Exploit URL: http://reedarvin.thearvins.com/20050730-01.html
http://www.securiteam.com/windowsntfocus/5YP040AGKW.html
Vendor URL: http://www.netcplus.com/

Credit

RedTeam Pentesting - RedTeam Pentesting

Direct URL: http://osvdb.org/18407