GoodTech SMTP Server < 5.17 'RCPT TO' Command Remote Overflow (deprecated)

Critical Nessus Network Monitor Plugin ID 3106


The remote host is vulnerable to a buffer overflow.


The remote host is running the GoodTech SMTP server. This version of GoodTech is vulnerable to a remote buffer overflow. An attacker exploiting this flaw would send a malformed 'RCPT TO' request to the SMTP server. Successful exploitation would result in the attacker running arbitrary code on the remote system.


Upgrade to version 5.17 or higher.

Plugin Details

Severity: Critical

ID: 3106

File Name: 3106.prm

Family: SMTP Servers

Published: 2005/07/23

Modified: 2015/06/01

Dependencies: 2004, 2005

Risk Information

Risk Factor: Critical


Base Score: 10

Temporal Score: 8.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:U/RL:U/RC:ND

Reference Information

CVE: CVE-2005-2387

BID: 14357