ISS X-Force Database: hitachi-groupmax-requests-dos(27344): Hitachi Groupmax Address Server and Groupmax Mail Server malformed requests denial of service

Hitachi Groupmax Address Server and Groupmax Mail Server malformed requests denial of service

hitachi-groupmax-requests-dos (27344)

Medium Risk

Description:

Hitachi Groupmax Address Server and Hitachi Groupmax Mail Server are vulnerable to a denial of service. By sending a malformed request, a remote attacker could cause the server to stop responding.

Consequences:

Denial of Service

Remedy:

Refer to Hitachi Software Vulnerability Information HS06-012-01 for upgrade information. See References.

References:

Hitachi Global Web site: Hitachi.
Hitachi Software Vulnerability Information HS06-012 : Groupmax Address/Mail Server Stopping Issue.
Hitachi Software Vulnerability Information HS06-012-01 : Solutions for Groupmax Address/Mail Server.
BID-18538: Hitachi Groupmax Unexpected Request Remote Denial of Service Vulnerability
CVE-2006-3214: Unspecified vulnerability in Hitachi Groupmax Address Server 7 and earlier, and Groupmax Mail Server 7 and earlier allows remote attackers to cause a denial of service (product stop) via unspecified vectors involving unexpected requests.
OSVDB ID: 26679: Hitachi Groupmax Address/Mail Server Unspecified DoS
SA20700: Groupmax Address/Mail Server Denial of Service Vulnerability
SECTRACK ID: 1016338: Groupmax Lets Remote Users Deny Service
VUPEN/ADV-2006-2456: Hitachi Groupmax Address and Mail Servers Remote Denial of Service Vulnerability

Platforms Affected:

Hitachi Groupmax Address Server 2
Hitachi Groupmax Address Server 3
Hitachi Groupmax Address Server 5
Hitachi Groupmax Address Server 6
Hitachi Groupmax Address Server 7
Hitachi Groupmax Mail Server 2
Hitachi Groupmax Mail Server 3
Hitachi Groupmax Mail Server 5
Hitachi Groupmax Mail Server 6
Hitachi Groupmax Mail Server 7

Reported:

Jun 20, 2006

The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

For corrections or additions please email xforce@iss.net

Return to the main page