MailEnable SMTP Connector Service DNS MX Response DoS
Medium Nessus Plugin ID 14712
SynopsisThe remote host has a application that is affected by a denial of service vulnerability.
DescriptionAccording to its banner, the remote host is running at least one instance of MailEnable's SMTP Connector service. A flaw exists in both the Standard Edition 1.7x and Professional Edition 1.2x/1.5a-e that results in this service crashing if it receives a DNS response with over 100 MX records. A remote attacker can exploit this to perform a DoS attack against the SMTP server on the target.
SolutionUpgrade to MailEnable Standard Edition 1.8 / Professional Edition 1.5e or greater.