Courier Mail Server < 0.50.1 DNS SPF Record Lookup Failure Memory Corruption DoS

Low Nessus Plugin ID 18620

Synopsis

The remote mail server is vulnerable to a denial of service attack.

Description

The remote host is running Courier Mail Server, an open source mail server for Linux and Unix.

According to its banner, the installed version of Courier is prone to a remote denial of service vulnerability triggered when doing Sender Policy Framework (SPF) data lookups. To exploit this flaw, an attacker would need to control a DNS server and return malicious SPF records in response to queries from the affected application.

Solution

Upgrade to Courier version 0.50.1 or later.

Plugin Details

Severity: Low

ID: 18620

File Name: courier_0501.nasl

Version: 1.14

Type: remote

Published: 2005/07/06

Updated: 2018/07/06

Dependencies: 10263

Risk Information

Risk Factor: Low

CVSS v2.0

Base Score: 2.6

Temporal Score: 1.9

Vector: CVSS2#AV:N/AC:H/Au:N/C:N/I:N/A:P

Temporal Vector: CVSS2#E:U/RL:OF/RC:C

Vulnerability Information

CPE: cpe:/a:double_precision_incorporated:courier_mail_server

Exploit Available: false

Exploit Ease: No known exploits are available

Vulnerability Publication Date: 2005/07/02

Reference Information

CVE: CVE-2005-2151

BID: 14135