Bugtraq mailing list archives

Re: Lotus Domino DoS

From: 3APA3A <3APA3A () SECURITY NNOV RU>
Date: Tue, 21 Aug 2001 12:47:35 +0400

Dear Ian Gulliver,

--21.08.2001 1:19, you wrote Lotus Domino DoS to bugtraq () securityfocus com;

I> MAIL            FROM:<bounce@[127.0.0.1]>            RCPT
I> TO:<address () domain com>

I> where domain.com is not local to the server in question,
I> the server attempts to bounce the message, and the bounce
I> goes into a loop, constantly being sent back to the same
I> server.


It  was  reported in vuln-dev list on May, 20 2000 by SMILER
<smiler () VXD ORG>  in  same time with SMTP buffer overflow in
Lotus. I wonder why it's not patched yet.

http://www.security.nnov.ru/search/document.asp?docid=226


-- 
/3APA3A

Current thread:

Lotus Domino DoS Ian Gulliver (Aug 20)
- Re: Lotus Domino DoS 3APA3A (Aug 21)
- Lotus Domino DoS solution Radoslav Dejanović (Aug 23)