SMTP HELP detection 2.0
 
Plugin ID7
Plugin nameSMTP HELP detection
Plugin filenameSMTP HELP detection.plugin
Plugin filesize2645 bytes
Plugin familySMTP
Plugin created nameMarc Ruef
Plugin created emailmarc dot ruef at computec dot ch
Plugin created webhttp://www.computec.ch
Plugin created companycomputec.ch
Plugin created date2003/11/13
Plugin updated nameMarc Ruef
Plugin updated emailmarc dot ruef at computec dot ch
Plugin updated webhttp://www.computec.ch
Plugin updated companycomputec.ch
Plugin updated date2004/11/13
Plugin version2.0
Plugin changelogCorrected the plugin structure and added the accuracy values in 1.3. Improved the pattern matching and added the changelog in 2.0
Plugin protocoltcp
Plugin port25
Plugin procedure detectionopen|send HELP\n|sleep|close|pattern_exists 220 *HELP*
Plugin detection accuracy70
Plugin commentThis plugin was written with the ATK Attack Editor.
Bug affectedMost mail transfer agents
Bug not affectedHardened mail transfer agents
Bug vulnerability classConfiguration
Bug descriptionThe mail server allows the HELP commando. A malicous user could use this to verify the availablity of certain SMTP commands. He could also enumerate the mail server.
Bug solutionDo not allow the HELP command to prevent further enumeration. Check the manual of your mail server howto set the configuration correctly. Additionally prevent unwanted SMTP connections with firewalling.
Bug fixing time10 minutes
Bug exploit availabilityYes
Bug remoteYes
Bug localYes
Bug severityLow
Bug popularity9
Bug simplicity9
Bug impact2
Bug risk6
Bug check toolsNessus is able to do the check automated. Mostly attackers prefer to test the HELP support with a simple telnet or NetCat connection.
Source LiteratureHacking Intern - Angriffe, Strategien, Abwehr, Marc Ruef, Marko Rogge, Uwe Velten and Wolfram Gieseke, November 1, 2002, Data Becker, Düsseldorf, ISBN 381582284X
Source Misc.http://www.computec.ch

This file was generated by the Attack Tool Kit (ATK), the open-sourced security scanner and exploiting framework.