TFS SMTP 3.2 MAIL FROM overflow

High Nessus Plugin ID 10284


The remote mail server may be affected by a buffer overflow vulnerability.


The remote SMTP server may be affected by a buffer overflow triggered when it receives an overly long argument to the 'MAIL FROM' command.

This vulnerability is reported to affect TenFour TFS SMTP and may allow an unauthenticated remote attacker to crash the service or even execute arbitrary code on this system.


Upgrade to TenFour TFS SMTP 4.0 or later.

See Also

Plugin Details

Severity: High

ID: 10284

File Name: tfs_smtp_overflow.nasl

Version: $Revision: 1.34 $

Type: remote

Published: 1999/09/08

Modified: 2016/11/03

Dependencies: 10249, 10263

Risk Information

Risk Factor: High


Base Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Information

Vulnerability Publication Date: 1999/09/02

Reference Information

CVE: CVE-1999-1516

OSVDB: 224