Signature Detail
Short Name |
APP:POSTFIX-GREYLISTD-OF |
|---|---|
Severity |
High |
Recommended |
No |
Recommended Action |
Drop |
Category |
APP |
Keywords |
Postfix Greylisting Overflow |
Release Date |
2005/08/15 |
Update Number |
1213 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
APP: Postfix Greylisting Overflow
This signature detects attempts to exploit a known vulnerability in the Postfix Greyisting daemon. A successful exploit can lead to a buffer overflow and remote code execution.
Extended Description
It is reported that GLD contains a buffer overflow vulnerability. This issue is due to a failure of the application to properly ensure that a fixed-size memory buffer is sufficiently large prior to copying user-supplied input data into it. Remote attackers may exploit this vulnerability to cause arbitrary machine code to be executed in the context of the affected service. As the service is designed to be run as the superuser, remote attackers may gain superuser privileges on affected computers. GLD version 1.4 is reportedly affected, but prior versions may also be affected.
Affected Products
- Salim Gasmi GLD 1.0.0
- Salim Gasmi GLD 1.1.0
- Salim Gasmi GLD 1.2.0
- Salim Gasmi GLD 1.3.0
- Salim Gasmi GLD 1.3.1
- Salim Gasmi GLD 1.4.0
References
- BugTraq: 13129
- CVE: CVE-2005-1099