SMTP Service STARTTLS Plaintext Command Injection

Question

We are getting this vulnerability on SUSE Linux Enterprise Server 11. This vulnerability is getting triggered on port 587 for postfix. I have checked several links but I am unable to get any relevant solution for it.

Has anybody faced an issue with this vulnerability? How do I remediate this?

Links referred:

https://www.securityfocus.com/archive/1/516901/30/0/threaded https://xorl.wordpress.com/2011/05/02/cve-2011-0411-postfix-starttls-plaintext-command-injection/ http://www.postfix.org/CVE-2011-0411.html

What is reporting this vulnerability? They should have some sort of reference. Is there a CVE or any other identifier? — schroeder, Sep 26 '18 at 14:02
It was reported in the Nessus Scan and CVE is CVE-2011-2165. — Esskay, Oct 01 '18 at 14:49

gowenfawr · Answer 1 · 2018-09-26T14:28:41.377

1

Based on the links you've provided, this appears to be CVE-2011-0411. Given a CVE, you can browse at suse.com to see which packages will fix it. In this case, postfix >= 2.5.6-5.6.1 (patchname: slessp1-postfix) will correct the issue for SLES 11.

edited Sep 26 '18 at 14:28

answered Sep 26 '18 at 14:09

gowenfawr

71,975
17
161
198

SMTP Service STARTTLS Plaintext Command Injection

1 Answers1