SMTP.Local.Overflow
Description
This indicates detection of an SMTP command containing an email address longer than 64 bytes, possible an indication of a buffer-overflow attempt.
Affected Products
Any unprotected SMTP server is vulnerable to the attack.
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
This indicates detection of traffic that does not comply with the protocol standard.
Monitor the traffic from that network for any suspicious activity.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |
Version Updates
Date | Version | Detail |
---|---|---|
2019-02-19 | 14.556 |