CVE-2002-2121

Name of the Vulnerable Software and Affected Versions: SurfControl SuperScout Email filter for SMTP version 3.5.1

Description: The issue allows remote attackers to cause a denial of service, resulting in a crash, by sending a long SMTP command, specifically the (1) HELO or (2) RCPT TO command. This could be due to a buffer overflow.

Recommendations: For version 3.5.1, consider restricting the length of incoming SMTP commands to prevent the denial of service. As a temporary workaround, limiting the size of the HELO and RCPT TO commands may help mitigate the risk of exploitation.