QMail-SMTPD Long SMTP Session Integer Overflow Denial of Service Vulnerability

info
discussion
exploit
solution
references

QMail-SMTPD Long SMTP Session Integer Overflow Denial of Service Vulnerability

It has been reported that qmail-smtpd may be prone to a remote denial of service vulnerability that may allow an attacker to cause a denial of service condition in the software. An attacker may be able to crash qmail-smtpd via a long SMTP session.

qmail 1.03 running on a Linux platform has been reported to be prone to this issue, however, other versions may be affected as well.