Juniper Networks
Solutions
Products & Services
Company
Partners
Support
Education

Signature Detail

Security Intelligence Center
Signatures
Print

Short Name

 POP3:OVERFLOW:USER

Severity

 High

Recommended

 Yes

Recommended Action

 Drop

Category

 POP3

Keywords

 Buffer Overflow Username

Release Date

 2003/08/27

Update Number

 1213

Supported Platforms

 di-5.3+, idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

POP3: Buffer Overflow Username


This protocol anomaly triggers when it detects a POP3 USER command argument that is too long. This can indicate a buffer overflow attempt.

Extended Description

Receiving such a message could indicate a software misconfiguration or an attacker is attempting to cause a buffer overflow. The impact depends on how the POP3 server handles those packets.

References

  • BugTraq: 19651
  • BugTraq: 18056
  • BugTraq: 25496
  • BugTraq: 4055
  • CVE: CVE-2006-2502
  • CVE: CVE-2002-1781
  • CVE: CVE-2006-4364
  • URL: http://www.faqs.org/rfcs/rfc1939.html

Site Map
RSS Feeds
Careers
Accessibility
Feedback
Privacy Policy
Legal Notices
Copyright © 1999-2010 Juniper Networks, Inc. All rights reserved.
Help
|
My Account
|
Log Out