Vulnerabilities > CVE-1999-0098

047910
CVSS 10.0 - CRITICAL
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
COMPLETE
Integrity impact
COMPLETE
Availability impact
COMPLETE
network
low complexity
apple
pmail
seattlelab
critical
nessus

Summary

Buffer overflow in SMTP HELO command in Sendmail allows a remote attacker to hide activities.

Vulnerable Configurations

Part Description Count
Application
Apple
1
Application
Pmail
1
Application
Seattlelab
1

Nessus

NASL familySMTP problems
NASL idSMTP_HELO.NASL
descriptionThe remote SMTP server seems to allow remote users to send mail anonymously by providing arguments that are too long to the HELO command (more than 1024 chars). This problem may allow malicious users to send unsolicited mail (i.e., SPAM) or threatening mail using the server, and keep their anonymity.
last seen2020-06-01
modified2020-06-02
plugin id10260
published1999-08-18
reporterThis script is Copyright (C) 1999-2018 Tenable Network Security, Inc.
sourcehttps://www.tenable.com/plugins/nessus/10260
titleMultiple MTA HELO Command Remote Overflow