Ipswitch IMail / SLMail VRFY Command Remote Overflow

This script is Copyright (C) 1999-2012 Tenable Network Security, Inc.

Synopsis :

The remote mail server is vulnerable to denial of service.

Description :

It was possible to crash the affected SMTP service by sending a VRFY
command with a long argument.

This attack is known to affect certain versions of Ipswitch IMail and
Seattle Labs' SLMail, although products from other vendors may also be

An unauthenticated, remote attacker can leverage this issue to conduct
a denial of service attack against the affected mail server.

See also :


Solution :

Contact the product's vendor for an update.

Risk factor :

Medium / CVSS Base Score : 5.0

Family: SMTP problems

Nessus Plugin ID: 10254 ()

Bugtraq ID:

CVE ID: CVE-1999-0231

Ready to Scan Unlimited IPs & Run Compliance Checks?

Upgrade to Nessus Professional today!

Buy Now

Combine the Power of Nessus with the Ease of Cloud

Start your free Nessus Cloud trial now!

Begin Free Trial