CVE-2008-1854

Name of the Vulnerable Software and Affected Versions SmarterMail version 5.0.2999

Description The issue allows remote attackers to cause a denial of service, resulting in service termination. This can be achieved by sending a long HTTP request, including "GET", "HEAD", "PUT", "POST", or "TRACE" requests.

Recommendations For SmarterMail version 5.0.2999, consider restricting access to the SmarterMail Web Server to minimize the risk of exploitation until a fix is available. As a temporary workaround, limiting the length of incoming HTTP requests may help prevent service termination. At the moment, there is no information about a newer version that contains a fix for this issue.