Subject: HELLO Parameter (Help!)
To: None <tech-security@netbsd.org, current-users@netbsd.org,>
From: Ahmet Oturgan \(Garanti Teknoloji\) <AhmetOturgan@garanti.com.tr>
List: tech-security
Date: 05/30/2001 11:38:28
This message is in MIME format. Since your mail reader does not understand
this format, some or all of this message may not be legible.
--------------InterScan_NT_MIME_Boundary
Content-Type: multipart/alternative;
boundary="----_=_NextPart_001_01C0E8E3.E6361C60"
------_=_NextPart_001_01C0E8E3.E6361C60
Content-Type: text/plain;
charset="ISO-8859-9"
Hello,
We are getting the vulnaribility report about one of our mail server that
has the configuration
as NT 4.0 SP 5 , Exchange 5.5 SP 4 but I cant find any documentation about
it on internet.
If you sent me some information and help about it I will be very
appreciated. The vulnaribility is below:
messages_21_VulnMajorPotential Vulnerabilities
* messages_21_VulnMiscMiscellaneous Vulnerabilities
* [SMTP/25/TCP] Server exits on long HELO parameter; possible buffer
overflow..SMTP.TCP)
* [SMTP/25/TCP] Server exits on long MAIL FROM parameter; possible
buffer overflow..SMTP.TCP)
* [SMTP/25/TCP] Server exits on long RCPT TO parameter; possible
buffer overflow..SMTP.TCP)
Thanks.
Ahmet Oturgan
ahmetoturgan@garanti.com.tr <mailto:ahmetoturgan@garanti.com.tr>
------_=_NextPart_001_01C0E8E3.E6361C60
Content-Type: text/html;
charset="ISO-8859-9"
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=ISO-8859-9">
<META content="MSHTML 5.50.4522.1800" name=GENERATOR></HEAD>
<BODY>
<DIV><FONT face=Arial size=2><SPAN
class=773243408-30052001>Hello,</SPAN></FONT></DIV>
<DIV><FONT face=Arial size=2><SPAN class=773243408-30052001>We are getting the
vulnaribility report about one of our mail server that has the configuration
</SPAN></FONT></DIV>
<DIV><FONT face=Arial color=#0000ff size=2><SPAN class=773243408-30052001>as NT
4.0 SP 5 , Exchange 5.5 SP 4<FONT color=#000000> but I cant find any
documentation about it on internet.</FONT></SPAN></FONT></DIV>
<DIV><FONT face=Arial color=#0000ff size=2><SPAN class=773243408-30052001><FONT
color=#000000> If you sent me some information and help about it I will be
very appreciated. The vulnaribility is below:</FONT></SPAN></FONT></DIV>
<DIV><FONT face=Arial size=2><SPAN
class=773243408-30052001></SPAN></FONT> </DIV>
<DIV><FONT face=Arial size=2><SPAN class=773243408-30052001><A
name=messages!21!VulnMajor><FONT face="Times New Roman" size=3>Potential
Vulnerabilities</FONT></A><FONT face="Times New Roman" size=3> </FONT></DIV>
<UL>
<LI><A name=messages!21!VulnMisc>Miscellaneous Vulnerabilities</A>
<UL>
<LI>[SMTP/25/TCP] Server exits on long HELO parameter; possible buffer
overflow..SMTP.TCP)
<LI>[SMTP/25/TCP] Server exits on long MAIL FROM parameter; possible buffer
overflow..SMTP.TCP)
<LI>[SMTP/25/TCP] Server exits on long RCPT TO parameter; possible buffer
overflow..SMTP.TCP)</LI></UL></LI></UL>
<DIV><SPAN class=773243408-30052001>Thanks.</SPAN></DIV>
<DIV><SPAN class=773243408-30052001></SPAN> </DIV>
<DIV><SPAN class=773243408-30052001>Ahmet Oturgan</SPAN></DIV>
<DIV><SPAN class=773243408-30052001><A
href="mailto:ahmetoturgan@garanti.com.tr">ahmetoturgan@garanti.com.tr</A></SPAN></DIV></SPAN></FONT></BODY></HTML>
------_=_NextPart_001_01C0E8E3.E6361C60--
--------------InterScan_NT_MIME_Boundary--