Denial of service attack for GMS Mail v3.
At the SMTP protocol stage, it is possible to enter an email address whose
domain name and user name, combined, exceed 255 characters. This causes
a fatal exception in the SMTP thread (which is later recovered). By
repeatidly sending the a message with this address, all threads may be
in recovery mode which prevents the server accepting more email.
There are two possible solutions to this problem:
- Upgrade to version 4 of GMS Mail.
- Upgrade to version 3.03E from our FTP site.
Keywords:denial service attack