Bugtraq mailing list archives
Re: Netscape Messaging Server RCPT TO vul.
From: n-miwa () LAC CO JP (Nobuo Miwa)
Date: Fri, 29 Oct 1999 14:17:52 -0400
Thank you for good information. But, Netscape Messaging Server(NMS) cannot filter following patterns.. rcpt to: rcpt to: postmaster () somewhere dom <-- correct address rcpt to: rcpt to: postmaster () somewhere dom ... unlimited times ... I guess NMS allocate all RCPT TO in NT's memory by malloc() and somehow they never free them. That's the problem. AND you cannot see any log after this attack. Ciao <Nobuo Miwa> n-miwa () lac co jp ( @ @ ) http://www.lac.co.jp/security/ --------------------------o00o--(. .)--o00o--------------------------
Current thread:
- Netscape Messaging Server RCPT TO vul. Nobuo Miwa (Oct 28)
- Re: Netscape Messaging Server RCPT TO vul. Alan Brown (Oct 28)
- Re: Netscape Messaging Server RCPT TO vul. Nobuo Miwa (Oct 29)
- Re: Netscape Messaging Server RCPT TO vul. Alan Brown (Oct 28)