SMTP ESMTP detection 2.0
 
Plugin ID6
Plugin nameSMTP ESMTP detection
Plugin filenameSMTP ESMTP detection.plugin
Plugin filesize2897 bytes
Plugin familySMTP
Plugin created nameMarc Ruef
Plugin created emailmarc dot ruef at computec dot ch
Plugin created webhttp://www.computec.ch
Plugin created companycomputec.ch
Plugin created date2003/11/13
Plugin updated nameMarc Ruef
Plugin updated emailmarc dot ruef at computec dot ch
Plugin updated webhttp://www.computec.ch
Plugin updated companycomputec.ch
Plugin updated date2004/11/13
Plugin version2.0
Plugin changelogAdded the Symantec NetRecon rating in version 1.3. Corrected the plugin structure and added the accuracy values in 1.4. Improved the pattern matching and added the changelog in 2.0.
Plugin protocoltcp
Plugin port25
Plugin procedure detectionopen|sleep|close|pattern_exists 220 *ESMTP*
Plugin detection accuracy90
Plugin commentThis plugin was written with the ATK Attack Editor.
Bug affectedSome enhanced mail transfer agents
Bug not affectedEspecially older mail transfer agents
Bug vulnerability classConfiguration
Bug descriptionWith banner-grabbing an attacker can see that this mail server supports ESMTP (Extended Simple Mail Transfer Protocol). ESMTP has additional vulnerabilities, so knowing that a network resource supports it permits an attacker to focus their efforts.
Bug solutionA service if not needed should be de-installed or disabled. If this is not possible, an access control list (ACL) with firewalling should be applied to this port. Do not allow the web server to include sensitive data (e.g. web server name and version) into the 404 Not Found report.
Bug fixing time30 minutes
Bug exploit availabilityYes
Bug remoteYes
Bug localYes
Bug severityLow
Bug popularity9
Bug simplicity8
Bug impact5
Bug risk6
Bug Symantec NetRecon rating9
Bug check toolsNessus, Symantec NetRecon, ISS Internet Scanner and Dante Security Scanner are able to do the same or a similar check
Source LiteratureHacking Intern - Angriffe, Strategien, Abwehr, Marc Ruef, Marko Rogge, Uwe Velten and Wolfram Gieseke, November 1, 2002, Data Becker, Düsseldorf, ISBN 381582284X
Source Misc.http://www.computec.ch

This file was generated by the Attack Tool Kit (ATK), the open-sourced security scanner and exploiting framework.