Courier Mail Server < 0.50.1 DNS SPF Record Lookup Failure Memory Corruption DoS

low Nessus Plugin ID 18620

Synopsis

The remote mail server is vulnerable to a denial of service attack.

Description

The remote host is running Courier Mail Server, an open source mail server for Linux and Unix.

According to its banner, the installed version of Courier is prone to a remote denial of service vulnerability triggered when doing Sender Policy Framework (SPF) data lookups. To exploit this flaw, an attacker would need to control a DNS server and return malicious SPF records in response to queries from the affected application.

Solution

Upgrade to Courier version 0.50.1 or later.

Plugin Details

Severity: Low

ID: 18620

File Name: courier_0501.nasl

Version: 1.14

Type: remote

Published: 7/6/2005

Updated: 7/6/2018

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Low

Score: 2.7

CVSS v2

Risk Factor: Low

Base Score: 2.6

Temporal Score: 1.9

Vector: CVSS2#AV:N/AC:H/Au:N/C:N/I:N/A:P

Vulnerability Information

CPE: cpe:/a:double_precision_incorporated:courier_mail_server

Exploit Ease: No known exploits are available

Vulnerability Publication Date: 7/2/2005

Reference Information

CVE: CVE-2005-2151

BID: 14135