Detections
Analytics

WinGate Invalid SMTP State Format String DoS

medium Nessus Plugin ID 25879

Synopsis

The remote proxy is affected by a denial of service vulnerability.

Description

The remote host appears to be running WinGate, a Windows application for managing and securing Internet access.

The version of WinGate installed on the remote host fails to sanitize user-supplied input to its SMTP server component of format strings before using it to log a problem. By connecting to the service and issuing commands the server was not expecting, a remote attacker may be able to force the service to an invalid state and crash the WinGate service itself, thereby denying service to legitimate users.

Solution

Upgrade to WinGate 6.2.2 or later.

See Also

https://www.securityfocus.com/archive/1/476011/30/0/threaded

http://www.nessus.org/u?133c709d

Plugin Details

Severity: Medium

ID: 25879

File Name: wingate_622.nasl

Version: 1.18

Type: local

Agent: windows

Family: Windows

Published: 8/13/2007

Updated: 11/15/2018

Supported Sensors: Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Low

Score: 3.6

CVSS v2

Risk Factor: Medium

Base Score: 5

Temporal Score: 3.7

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

Vulnerability Information

CPE: cpe:/a:qbik:wingate

Required KB Items: SMB/Registry/Enumerated

Exploit Ease: No known exploits are available

Reference Information

CVE: CVE-2007-4335

BID: 25272, 25303