Trend Micro InterScan 3.32 SMTP HELO Command Remote Overflow DoS

This script is Copyright (C) 2000-2014 Renaud Deraison and Alain Thivillon


Synopsis :

The remote MTA is vulnerable to a denial of service attack.

Description :

It was possible to perform a denial of service against the remote
Interscan SMTP server by sending it a special long HELO command.

This problem allows an attacker to prevent your Interscan SMTP server
from handling requests.

Solution :

Contact your vendor for a patch.

Risk factor :

Medium / CVSS Base Score : 5.0
(CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P)
CVSS Temporal Score : 5.0
(CVSS2#E:H/RL:U/RC:ND)
Public Exploit Available : true

Family: SMTP problems

Nessus Plugin ID: 10353 (interscan_dos.nasl)

Bugtraq ID: 787

CVE ID: CVE-1999-1529