Security Basics mailing list archives

Re: mail server vulnerability

From: >p3dRø< <p.valera () pucp edu pe>
Date: Mon, 09 Feb 2009 15:56:11 -0500 (PET)



I think that it\'s not neccesary an overflow like that. Why not just make an smtp
client in C++ or Perl and start sending mails ?

Pedro


------ Mensaje original -------
De : abhishek.luck () gmail com
Para : security-basics () securityfocus com
Fecha : Mon, 9 Feb 2009 17:08:39 +0530
Asunto : mail server vulnerability

Hello list,

For doing a vulnerability assessment project,I have to check if a mail
server is vulnerable to send anonymous mail.

Can you suggest some ways to do it??

HELO Overflow is one way but dont know how to do it.

regards
abhi

Current thread:

mail server vulnerability Abhishek Kumar (Feb 09)
- Re: mail server vulnerability p3dRø (Feb 09)
- RE: mail server vulnerability Nick Vaernhoej (Feb 09)
- Re: mail server vulnerability Eitan Adler (Feb 10)
- <Possible follow-ups>
- Re: Re: mail server vulnerability viveksilla (Feb 10)
- Re: Re: mail server vulnerability ryancol (Feb 10)
  - Re: mail server vulnerability Ansgar Wiechers (Feb 10)
- Re: Re: mail server vulnerability praveen_recker (Feb 20)
  - Re: Re: mail server vulnerability Atilla Remote Support (Feb 20)
    - Re: Re: mail server vulnerability greimer (Feb 20)
    - Re: Re: mail server vulnerability Atilla Remote Support (Feb 20)
    - Re: mail server vulnerability Patrick J Kobly (Feb 20)

(Thread continues...)