WinGate < 6.2.2 Invalid SMTP State Remote DoS

Medium Nessus Network Monitor Plugin ID 4166

Synopsis

The remote proxy is affected by a denial of service vulnerability.

Description

The remote host appears to be running WinGate, a Windows application for managing and securing Internet access. The version of WinGate installed on the remote host fails to sanitize user-supplied input to its SMTP server component of format strings before using it to log a problem. By connecting to the service and issuing commands the server was not expecting, a remote attacker may be able to force the service to an invalid state and crash the WinGate service itself, thereby denying service to legitimate users.

Solution

Upgrade to version 6.2.2 or higher.

See Also

http://www.securityfocus.com/archive/1/476011/30/0/threaded

http://www.nessus.org/u?133c709d

http://www.wingate.com/news.php?id=50

Plugin Details

Severity: Medium

ID: 4166

File Name: 4166.prm

Family: Web Servers

Published: 2007/08/13

Modified: 2016/01/21

Dependencies: 1442

Nessus ID: 25879

Risk Information

Risk Factor: Medium

CVSSv2

Base Score: 5.8

Temporal Score: 4.3

Vector: CVSS2#AV:A/AC:L/Au:N/C:P/I:P/A:P

Temporal Vector: CVSS2#E:U/RL:OF/RC:C

CVSSv3

Base Score: 6.3

Temporal Score: 5.5

Vector: CVSS3#AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Temporal Vector: CVSS3#E:U/RL:O/RC:C

Reference Information

CVE: CVE-2007-4335

BID: 25272, 25303

OSVDB: 39535