MDaemon Server DomainPOP Malformed Message DoS

This script is Copyright (C) 2007-2017 Tenable Network Security, Inc.


Synopsis :

The remote mail server is prone to a denial of service attack.

Description :

According to its banner, the version of MDaemon installed on the remote
host contains a vulnerability in its 'DomainPOP' Mail Collection
component that may cause it to crash while processing a specially
crafted message. An unauthenticated, remote attacker may be able to
leverage this issue to deny service to legitimate users of the
application.

See also :

http://files.altn.com/MDaemon/Release/RelNotes_en.html

Solution :

Upgrade to MDaemon 9.6.1 or later.

Risk factor :

Low / CVSS Base Score : 2.6
(CVSS2#AV:N/AC:H/Au:N/C:N/I:N/A:P)
CVSS Temporal Score : 2.3
(CVSS2#E:ND/RL:OF/RC:C)
Public Exploit Available : false

Family: Windows

Nessus Plugin ID: 25683 ()

Bugtraq ID: 24787

CVE ID: CVE-2007-3622

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now