You are here

V-225: McAfee Email Gateway SMTP Processing Flaw Lets Remote Users Deny Service

August 23, 2013 - 1:26am

Addthis

PROBLEM:

A vulnerability was reported in McAfee Email Gateway. A remote user can cause denial of  service conditions.

PLATFORM:

McAfee Email Gateway (MEG) 7.5

ABSTRACT:

A remote user can cause the SMTP proxy to stop responding.

REFERENCE LINKS:

SecurityTracker Alert ID:  1028941  
GENERIC-MAP-NOMATCH

IMPACT ASSESSMENT:

High

DISCUSSION:

A vulnerability was reported in McAfee Email Gateway. A remote user can cause denial of service conditions.A remote user can send a specially crafted e-mail to cause the ws_inv-smtp process to enter an infinite loop and cause the target SMTP proxy to stop responding.

IMPACT:

Denial of service via network

SOLUTION:

The vendor has issued a fix (7.5 Patch 1).

Addthis