Kerio MailServer SYN Packet DoS

2002-08-19T12:07:40
ID OSVDB:6295
Type osvdb
Reporter Abraham Lincoln Hao / SunNinja(SunNinja@nssolution.com)
Modified 2002-08-19T12:07:40

Description

Vulnerability Description

Kerio MailServer contains a flaw that may allow a remote denial of service attack. The issue is triggered when SYN packets are sent to one of the following services: POP3, SMTP, IMAP, Secure IMAP, POP3S, WebMail, or Secure WebMail. The result is loss of availability for the service. The service resumes functionality after a short period of time.

Solution Description

Upgrade to version 5.1.7 or higher, as it has been reported to fix this vulnerability. It is also possible to minimize your risk of attack by implementing the following workaround(s): Filter all mail services to restrict access to only trusted sources from within the network.

Short Description

Kerio MailServer contains a flaw that may allow a remote denial of service attack. The issue is triggered when SYN packets are sent to one of the following services: POP3, SMTP, IMAP, Secure IMAP, POP3S, WebMail, or Secure WebMail. The result is loss of availability for the service. The service resumes functionality after a short period of time.

References:

Vendor URL: http://www.kerio.com/us/kms_home.html Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2002-08/0312.html Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2002-08/0299.html Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2002-08/0183.html ISS X-Force ID: 9904 CVE-2002-1433