Multiple MTA HELO Command Remote Overflow
High Nessus Plugin ID 10260
SynopsisThe remote SMTP server is vulnerable to an access control breach.
DescriptionThe remote SMTP server seems to allow remote users to send mail anonymously by providing arguments that are too long to the HELO command (more than 1024 chars).
This problem may allow malicious users to send unsolicited mail (i.e., SPAM) or threatening mail using the server, and keep their anonymity.
SolutionIf sendmail is being used, upgrade to version 8.9.x or newer.
If you do not run sendmail, contact your vendor.