[9082] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Lotus Notes SMTP Server bug

daemon@ATHENA.MIT.EDU (Siva Sankar Adiraju)
Fri Jan 15 15:07:51 1999

Date: 	Fri, 15 Jan 1999 00:52:53 PST
Reply-To: Siva Sankar Adiraju <adirajus@HOTMAIL.COM>
From: Siva Sankar Adiraju <adirajus@HOTMAIL.COM>
To: BUGTRAQ@NETSPACE.ORG

There is a security bug in IBM's Lotus Notes SMTP server. eg. An SMTP
session:

helo a
250 notes.foo.com
helo b
500 Session already established. The domain name [b] passed in with HELO
will be ignored. The current domain name of sending SMTP is [a].

If the strings `a' and `b' are very long (2048 chars), the Notes
SMTP server starts consuming CPU and crashes. A remote denial-of-
service. No workaround is known to me.

The bug exists with Notes on both Solaris and Windows platforms.

PS: This is not related to the gethostbyname() bug in Solaris 2.5.

--
Kapil Chowksey

______________________________________________________
Get Your Private, Free Email at http://www.hotmail.com


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[9082] in bugtraq

Lotus Notes SMTP Server bug

daemon@ATHENA.MIT.EDU (Siva Sankar Adiraju)Fri Jan 15 15:07:51 1999

daemon@ATHENA.MIT.EDU (Siva Sankar Adiraju)
Fri Jan 15 15:07:51 1999