This script is Copyright (C) 2006-2012 Tenable Network Security, Inc.
The remote IMAP server is prone to denial of service attacks.
The remote host is running Kerio MailServer, a commercial mail server
available for Windows, Linux, and Mac OS X platforms.
The installed version of Kerio MailServer terminates abnormally when
it receives certain malformed IMAP LOGIN commands. An unauthenticated,
remote attacker can exploit this issue to deny access to legitimate
Note that the application may not terminate immediately but only after
an administrator acknowledges a console message.
See also :
Upgrade to Kerio MailServer 6.1.3 Patch 1 or later.
Risk factor :
High / CVSS Base Score : 7.8
CVSS Temporal Score : 5.8
Public Exploit Available : false
Family: Denial of Service
Nessus Plugin ID: 21050 (kerio_kms_imap_login_dos.nasl)
Bugtraq ID: 17043
CVE ID: CVE-2006-1158
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.