Multiple Anti-Virus SMTP Message Long Line Parsing DoS

medium Nessus Plugin ID 11270

Synopsis

The remote SMTP server is vulnerable to denial of service.

Description

Some antivirus scanners die when they process an email with a long string without line breaks.

Such a message was sent. If there is an antivirus on your MTA, it might have crashed. Please check its status right now, as it is not possible to do it remotely

Solution

This plugin tests for a generic condition. It may be remedied by upgrading, reconfiguring, or changing your email antivirus solution.

Plugin Details

Severity: Medium

ID: 11270

File Name: smtp_too_long_line.nasl

Version: Revision: 1.15

Type: remote

Published: 2/25/2003

Updated: 12/9/2016

Configuration: Enable paranoid mode

Supported Sensors: Nessus

Risk Information

CVSS v2

Risk Factor: Medium

Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

Vulnerability Information

Required KB Items: Settings/ParanoidReport