CVE-1999-1529
published 1999-11-07CVE-1999-1529: A buffer overflow exists in the HELO command in Trend Micro Interscan VirusWall SMTP gateway 3.23/3.3 for NT, which may allow an attacker to execute arbitrary…
PriorityP339high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
12.07%
95.6th percentile
A buffer overflow exists in the HELO command in Trend Micro Interscan VirusWall SMTP gateway 3.23/3.3 for NT, which may allow an attacker to execute arbitrary code.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| trend_micro | interscan_viruswall | — | — |
| trend_micro | interscan_viruswall | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Trend Micro Interscan VirusWall 3.2.3/3.3 - 'HELO' Remote Buffer Overflow (2)
exploitdb·1999-11-07
CVE-2001-0679 Trend Micro Interscan VirusWall 3.2.3/3.3 - 'HELO' Remote Buffer Overflow (2)
Trend Micro Interscan VirusWall 3.2.3/3.3 - 'HELO' Remote Buffer Overflow (2)
---
source: https://www.securityfocus.com/bid/787/info
There is a buffer overflow in the HELO command of the smtp gateway which ships as part of the VirusWall product. This buffer overflow could be used to launch arbitrary code on the vulnerable server.
This issue was patched by InterScan, however even with the patch it is possible to cause a DoS of the mail server software by sending between 4075 and 4090 characters.
; Interscan VirusWall 3.23/3.3 remote.
;
; The binary is available at http://www.beavuh.org.
;
; To assemble:
;
; tasm32 -ml vwxploit.asm
; tlink32 -Tpe -c -x vwxploit.obj ,,, import32
;
; TASM 5 required!
;
; dark spyrit
.386p
locals
jumps
.model flat, stdcall
extrn GetCommandLineA:PROC
ex
Exploit-DB
Trend Micro Interscan VirusWall 3.2.3/3.3 - 'HELO' Remote Buffer Overflow (1)
exploitdb·1999-11-07
CVE-2001-0679 Trend Micro Interscan VirusWall 3.2.3/3.3 - 'HELO' Remote Buffer Overflow (1)
Trend Micro Interscan VirusWall 3.2.3/3.3 - 'HELO' Remote Buffer Overflow (1)
---
source: https://www.securityfocus.com/bid/787/info
There is a buffer overflow in the HELO command of the smtp gateway which ships as part of the VirusWall product. This buffer overflow could be used to launch arbitrary code on the vulnerable server.
This issue was patched by InterScan, however even with the patch it is possible to cause a DoS of the mail server software by sending between 4075 and 4090 characters.
#!/usr/bin/perl
# (c) Alain Thivillon & Stephane Aubert
# Herve Schauer Consultants 2000
# http://www.hsc.fr/
#
# Do not use this stuff against Microsoft MX hosts :)
#
# Crash Interscan SMTP Server on Windows NT Version 3.32 Builds 1011 and 1022
# Depending of debugger installed on NT, crash c
No writeups or analysis indexed.
http://marc.info/?l=bugtraq&m=94201512111092&w=2http://marc.info/?l=bugtraq&m=94204166130782&w=2http://marc.info/?l=bugtraq&m=94210427406568&w=2http://marc.info/?l=ntbugtraq&m=94199707625818&w=2http://marc.info/?l=ntbugtraq&m=94208143007829&w=2http://www.securityfocus.com/archive/1/55551http://www.securityfocus.com/bid/787https://exchange.xforce.ibmcloud.com/vulnerabilities/3465http://marc.info/?l=bugtraq&m=94201512111092&w=2http://marc.info/?l=bugtraq&m=94204166130782&w=2http://marc.info/?l=bugtraq&m=94210427406568&w=2http://marc.info/?l=ntbugtraq&m=94199707625818&w=2http://marc.info/?l=ntbugtraq&m=94208143007829&w=2http://www.securityfocus.com/archive/1/55551http://www.securityfocus.com/bid/787https://exchange.xforce.ibmcloud.com/vulnerabilities/3465
1999-11-07
Published