Juniper Networks
Solutions
Products & Services
Company
Partners
Support
Education

Signature Detail

Security Intelligence Center
Signatures
Print

Short Name

 SMTP:COMMAND:EXPN

Severity

 Medium

Recommended

 No

Category

 SMTP

Release Date

 2003/08/27

Update Number

 1213

Supported Platforms

 di-5.3+, idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

SMTP: EXPN Command


This protocol anomaly triggers when it detects an attempt to use the EXPN command. This command is not used by most standard clients and servers and can reveal information about e-mail accounts.

Extended Description

Receiving a SMTP EXPN command could indicate a non-standard SMTP implementation, a configuration error or that an attacker is attempting to gather information about a server to plan an attack.

References

  • CVE: CVE-1999-0096
  • URL: http://www.unoverica.com/documentation/ucm/mt211g13.html
  • URL: http://www.securityspace.com/smysecure/catid.html?viewsrc=1&id=10249

Site Map
RSS Feeds
Careers
Accessibility
Feedback
Privacy Policy
Legal Notices
Copyright © 1999-2010 Juniper Networks, Inc. All rights reserved.
Help
|
My Account
|
Log Out