[18311] in bugtraq
Re: DoS by SMTP AUTH command in IPSwitch IMail server
daemon@ATHENA.MIT.EDU (SAKAI Yoriyuki)
Fri Dec 22 04:53:16 2000
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Message-Id: <200012221439.BFI80854.BBJLT@lac.co.jp>
Date: Fri, 22 Dec 2000 14:39:37 +0900
Reply-To: SAKAI Yoriyuki <sakai@LAC.CO.JP>
From: SAKAI Yoriyuki <sakai@LAC.CO.JP>
To: BUGTRAQ@SECURITYFOCUS.COM
In-Reply-To: <200012071041.HIA08556.BLBJT@lac.co.jp>
Dear folks,
I reported a vulnerability of DoS in IPSwitch's IMail 6.0.5
at 2000/Dec/08.
Now they release a patch programme to fix this problem.
How to adapt patch(s) for IMail 6.x:
http://www.ipswitch.com/support/IMail/patch-upgrades.html
SMTPd32, POP3d32 and IMAP4d32 Patch for IMail Server 6.05:
ftp://ftp.ipswitch.com/Ipswitch/Product_Support/Imail/IM605HF5.exe
Still I don't try to make a DoS condition or to make a code to exploit
after I adapt a patch to IMail server. As soon as possible, I will do it.
(And hope this issue won't be back again.)
--
SAKAI Yoriyuki /----------------------------------->>
sakai@lac.co.jp / LAC Co., Ltd.
<<-----------------------/ http://www.lac.co.jp/security/
