Signature Detail
Short Name |
SMTP:OVERFLOW:TABS-EHLO-OF |
|---|---|
Severity |
High |
Recommended |
No |
Category |
SMTP |
Keywords |
TABS Mailcarrier EHLO Overflow |
Release Date |
2010/03/30 |
Update Number |
1643 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
SMTP: TABS Mailcarrier EHLO Overflow
This signature detects attempts to exploit a known vulnerability against TABS Mailcarrier Server. Attackers can cause a denial of service or execute arbitrary code with the privileges of the running daemon. This signature will false-positive on traffic between Microsoft Exchange Servers.
Extended Description
Tabs Laboratories MailCarrier is affected by a remote SMTP EHLO/HELO buffer overflow vulnerability. This issue is due to a failure of the application to perform adequate bounds checking on network messages prior to copying them into process buffers. A remote attacker may leverage this issue to execute arbitrary code on a computer running the affected software. This will facilitate unauthorized access and privilege escalation.
Affected Products
- Tabs Laboratories MailCarrier 2.51.0
References
- BugTraq: 11535
- BugTraq: 11535
- CVE: CVE-2004-1638