Hi all while scanning a remote client machine. I got a security hole as "There seem to be a buffer overflow in the remote SMTP server when the server is issued a too long argument to the 'MAIL FROM' command, such as :
MAIL FROM: [EMAIL PROTECTED] This problem may allow an attacker to prevent this host to act as a mail host and may even allow him to execute arbitrary code on this system." I verified this by running "lotus_esmtp_overflow.nasl" standalone and this too showed the attack to be successfull. But the remote ftp server is still on and the port is open even after continuous multiple attacks. Any clues? Regards, Bishan ________________________________________________________________________ Want to chat instantly with your online friends? Get the FREE Yahoo! Messenger http://uk.messenger.yahoo.com/
