AppleShare IP Mail Server HELO Overflow DoS

1998-04-08T00:00:00
ID OSVDB:7032
Type osvdb
Reporter Chris Wedgwood(chris@cybernet.co.nz)
Modified 1998-04-08T00:00:00

Description

Vulnerability Description

A remote overflow exists in AppleShare IP Mail Server. The HELO command fails to validate input resulting in a buffer overflow. With a specially crafted request, an attacker can cause a denial of service resulting in a loss of availability.

Solution Description

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Short Description

A remote overflow exists in AppleShare IP Mail Server. The HELO command fails to validate input resulting in a buffer overflow. With a specially crafted request, an attacker can cause a denial of service resulting in a loss of availability.

Manual Testing Notes

$ telnet [victim] 25 Trying 1.2.3.4... Connected to some.where. Escape character is '^]'. 220 some.where AppleShare IP Mail Server 5.0.3 SMTP Server Ready HELO XXXXXXXXXXX[....several hundered of these....]XXXXXXXX [ and it just hangs ]

References:

Mail List Post: http://marc.theaimsgroup.com/?l=bugtraq&m=89200657216213&w=2 CVE-1999-1015 Bugtraq ID: 61