CVE-2005-2472

Name of the Vulnerable Software and Affected Versions BusinessMail version 4.60.00

Description The issue concerns multiple buffer overflows that can be triggered by remote attackers, leading to a denial of service (application crash). This can occur when a long string is sent to the SMTP server via either the HELO or MAIL FROM commands.

Recommendations For BusinessMail version 4.60.00, consider restricting access to the SMTP server to minimize the risk of exploitation until a patch is available. As a temporary workaround, limiting the length of strings accepted by the HELO and MAIL FROM commands may help mitigate the issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.