Microsoft Windows SMTP Service Malformed BDAT Request Remote DoS

medium Nessus Plugin ID 10885

Synopsis

The remote SMTP server is affected by a denial of service vulnerability.

Description

It is possible to make the remote SMTP server fail and restart by sending specially crafted 'BDAT' requests.

The service will restart automatically, but all the connections established at the time of the attack will be dropped.

An attacker may use this flaw to make mail delivery to your site less efficient.

Solution

Apply the patch referenced above.

See Also

https://docs.microsoft.com/en-us/security-updates/SecurityBulletins/2002/ms02-012

https://marc.info/?l=bugtraq&m=101558498401274&w=2

http://www.nessus.org/u?ee067e2c

Plugin Details

Severity: Medium

ID: 10885

File Name: mssmtp_dos.nasl

Version: 1.34

Type: remote

Published: 3/8/2002

Updated: 11/15/2018

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Low

Score: 1.4

CVSS v2

Risk Factor: Medium

Base Score: 5

Temporal Score: 3.7

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

Vulnerability Information

Exploit Ease: No known exploits are available

Vulnerability Publication Date: 3/6/2002

Reference Information

CVE: CVE-2002-0055

BID: 4204

MSFT: MS02-012

MSKB: 313450