MailEnable SMTP Server HELO Command Remote DoS

This script is Copyright (C) 2006-2014 Tenable Network Security, Inc.


Synopsis :

The remote SMTP server is susceptible to a denial of service attack.

Description :

The remote host is running MailEnable, a commercial mail server for
Windows.

According to the version number in its banner, the SMTP server bundled
with the installation of MailEnable on the remote host will crash when
handling malformed HELO commands. An unauthenticated attacker may be
able to leverage this issue to deny service to legitimate users.

See also :

http://www.divisionbyzero.be/?p=173
http://www.securityfocus.com/archive/1/438374/30/0/threaded
http://www.divisionbyzero.be/?p=174
http://archives.neohapsis.com/archives/fulldisclosure/2006-06/0664.html
http://www.mailenable.com/hotfix/

Solution :

Apply the ME-10013 hotfix.

Risk factor :

Medium / CVSS Base Score : 5.0
(CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P)
CVSS Temporal Score : 4.1
(CVSS2#E:F/RL:OF/RC:C)
Public Exploit Available : true

Family: SMTP problems

Nessus Plugin ID: 21771 (mailenable_smtp_helo_dos.nasl)

Bugtraq ID: 18630

CVE ID: CVE-2006-3277