Re: [Exim] HELO overflow?

Pàgina inicial
Delete this message
Reply to this message
Autor: Tabor J. Wells
Data:  
A: Michael Scott Shappe
CC: exim-users
Assumpte: Re: [Exim] HELO overflow?
On Mon, Aug 26, 2002 at 12:48:46PM -0500,
Michael Scott Shappe <mikey@???> is thought to have said:

> Nessus is telling me that exim-4.10 has a HELO overflow vunerability. I can
> find no other reference to this being a current, known problem. Is nessus on
> crack?


Yes. Does Nessus provide any details of this supposed vulnerability?

220 host.example.com ESMTP Exim 4.10 Mon, 26 Aug 2002 14:14:29 -0400
HELO Ax1200
500 unrecognized command
500 unrecognized command
500 unrecognized command

Seems like it handles overlong strings in HELO appropropriately anywway...

Tabor
--
--------------------------------------------------------------------
Tabor J. Wells                                     twells@???
Fsck It!                 Just another victim of the ambient morality