Alt-N MDaemon 3.5.0 Denial of Service Vulnerability
BID:2134
Info
Alt-N MDaemon 3.5.0 Denial of Service Vulnerability
| Bugtraq ID: | 2134 |
| Class: | Failure to Handle Exceptional Conditions |
| CVE: |
CVE-2001-0064 |
| Remote: | Yes |
| Local: | Yes |
| Published: | Dec 19 2000 12:00AM |
| Updated: | Jul 11 2009 04:46AM |
| Credit: | Discovered and posted to Bugtraq on Dec 19, 2000 by Peter <[email protected]> |
| Vulnerable: |
Altn MDaemon 3.5 .0 |
| Not Vulnerable: |
Altn MDaemon 3.5.1 |
Discussion
Alt-N MDaemon 3.5.0 Denial of Service Vulnerability
MDaemon is an email server which supports most common internet mail protocols offered by Alt-N Technologies.
MDaemon is subject to a denial of service. Sending an unusually long argument followed by '\r\ n' to port 143 will cause the MDaemon service to crash. In addition, services running on ports 25, 110 and 366 will crash. A restart is required in order to gain normal functionality.
MDaemon is an email server which supports most common internet mail protocols offered by Alt-N Technologies.
MDaemon is subject to a denial of service. Sending an unusually long argument followed by '\r\ n' to port 143 will cause the MDaemon service to crash. In addition, services running on ports 25, 110 and 366 will crash. A restart is required in order to gain normal functionality.
Solution / Fix
Alt-N MDaemon 3.5.0 Denial of Service Vulnerability
Solution:
This issue has been addressed in MDaemon 3.5.1:
http://mdaemon.deerfield.com/download/getmdaemon.cfm
Solution:
This issue has been addressed in MDaemon 3.5.1:
http://mdaemon.deerfield.com/download/getmdaemon.cfm