What is the severity of CVE-2011-1720?

CVE-2011-1720 is considered a medium severity vulnerability due to the potential for remote attackers to crash the Postfix server.

How do I fix CVE-2011-1720?

To mitigate CVE-2011-1720, upgrade Postfix to a version higher than 2.2.10-1.5.el4, 2.3.3-2.3.el5_6, or 2.6.6-2.2.el6_1.

Who is affected by CVE-2011-1720?

CVE-2011-1720 affects Postfix mail transport agent versions including those mentioned in Red Hat's announcements.

What types of attacks can exploit CVE-2011-1720?

CVE-2011-1720 can be exploited by a remote attacker sending specially crafted SASL authentication data, leading to a server crash.

Is there a patch available for CVE-2011-1720?

Yes, patches for CVE-2011-1720 are available in the newer versions of Postfix as indicated in the vulnerability announcement.

Vulnerability/
CVE-2011-1720

medium

6.8

CWE

119

22/4/2011

9/5/2011

13/5/2011

6/8/2024

CVE-2011-1720: Buffer Overflow

First published: Fri Apr 22 2011(Updated: )

A heap-based buffer overread flaw was found in the way Postfix mail transport agent performed SASL handlers management for SMTP sessions, when the Cyrus SASL authentication was enabled. A remote attacker could use this flaw to cause Postfix smtpd server crash via specially-crafted SASL authentication request. Note: The default configuration of Postfix mail transport agent, as shipped with Red Hat Enterprise Linux 4, 5, and 6 do not enable SASL support for SMTP authentication for mail clients (thus Postfix server instances using it are not vulnerable to this flaw). Workaround: If your Postfix server configuration contains directive like: smtpd_sasl_auth_enable = yes change 'yes' to 'no' or comment the whole line out not to be vulnerable to this flaw.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
redhat/postfix	<2:2.2.10-1.5.el4	2:2.2.10-1.5.el4
redhat/postfix	<2:2.3.3-2.3.el5_6	2:2.3.3-2.3.el5_6
redhat/postfix	<2:2.6.6-2.2.el6_1	2:2.6.6-2.2.el6_1
Plone	=2.0.0
Plone	=2.0.1
Plone	=2.0.2
Plone	=2.0.3
Plone	=2.0.4
Plone	=2.0.5
Plone	=2.0.6
Plone	=2.0.7
Plone	=2.0.8
Plone	=2.0.9
Plone	=2.0.10
Plone	=2.0.11
Plone	=2.0.12
Plone	=2.0.13
Plone	=2.0.14
Plone	=2.0.15
Plone	=2.0.16
Plone	=2.0.17
Plone	=2.0.18
Plone	=2.0.19
Plone	=2.1.0
Plone	=2.1.1
Plone	=2.1.2
Plone	=2.1.3
Plone	=2.1.4
Plone	=2.1.5
Plone	=2.1.6
Plone	=2.2.0
Plone	=2.2.1
Plone	=2.2.2
Plone	=2.2.3
Plone	=2.2.4
Plone	=2.2.5
Plone	=2.2.6
Plone	=2.2.7
Plone	=2.2.8
Plone	=2.2.9
Plone	=2.2.10
Plone	=2.2.11
Plone	=2.2.12
Plone	=2.3
Plone	=2.3.0
Plone	=2.3.1
Plone	=2.3.2
Plone	=2.3.3
Plone	=2.3.4
Plone	=2.3.5
Plone	=2.3.6
Plone	=2.3.7
Plone	=2.3.8
Plone	=2.3.9
Plone	=2.3.10
Plone	=2.3.11
Plone	=2.3.12
Plone	=2.3.13
Plone	=2.3.14
Plone	=2.3.15
Plone	=2.3.16
Plone	=2.3.17
Plone	=2.3.18
Plone	=2.3.19
Plone	=2.4
Plone	=2.4.0
Plone	=2.4.1
Plone	=2.4.2
Plone	=2.4.3
Plone	=2.4.4
Plone	=2.4.5
Plone	=2.4.6
Plone	=2.4.7
Plone	=2.4.8
Plone	=2.4.9
Plone	=2.4.10
Plone	=2.4.11
Plone	=2.4.12
Plone	=2.4.13
Plone	=2.4.14
Plone	=2.4.15
Plone	=2.5.0
Plone	=2.5.1
Plone	=2.5.2
Plone	=2.5.3
Plone	=2.5.4
Plone	=2.5.5
Plone	=2.5.6
Plone	=2.5.7
Plone	=2.5.8
Plone	=2.5.9
Plone	=2.5.10
Plone	=2.5.11
Plone	=2.5.12
Plone	=2.6
Plone	=2.6.0
Plone	=2.6.1
Plone	=2.6.2
Plone	=2.6.3
Plone	=2.6.4
Plone	=2.6.5
Plone	=2.6.6
Plone	=2.6.7
Plone	=2.6.8
Plone	=2.6.9
Plone	=2.7.0
Plone	=2.7.1
Plone	=2.7.2
Plone	=2.7.3
Plone	=2.8.0
Plone	=2.8.1
Plone	=2.8.2

Remedy

http://www.securityfocus.com/bid/47778

Never miss a vulnerability like this again

Reference Links

Parent vulnerabilities

(Appears in the following advisories)

RHSA-2011:0843

Frequently Asked Questions

What is the severity of CVE-2011-1720?
CVE-2011-1720 is considered a medium severity vulnerability due to the potential for remote attackers to crash the Postfix server.
How do I fix CVE-2011-1720?
To mitigate CVE-2011-1720, upgrade Postfix to a version higher than 2.2.10-1.5.el4, 2.3.3-2.3.el5_6, or 2.6.6-2.2.el6_1.
Who is affected by CVE-2011-1720?
CVE-2011-1720 affects Postfix mail transport agent versions including those mentioned in Red Hat's announcements.
What types of attacks can exploit CVE-2011-1720?
CVE-2011-1720 can be exploited by a remote attacker sending specially crafted SASL authentication data, leading to a server crash.
Is there a patch available for CVE-2011-1720?
Yes, patches for CVE-2011-1720 are available in the newer versions of Postfix as indicated in the vulnerability announcement.

collector/redhat-cve
agent/type
agent/first-publish-date
collector/mitre-cve
source/MITRE
agent/weakness
agent/remedy
agent/last-modified-date
agent/references
agent/severity
agent/description
agent/event
collector/redhat-bugzilla
source/Red Hat
alias/CVE-2011-1720
agent/trending
agent/source
agent/author
agent/tags
agent/softwarecombine
collector/nvd-api
agent/software-canonical-lookup-request
collector/nvd-index
collector/nvd-historical
package-manager/redhat
vendor/postfix
canonical/plone
version/plone/2.0.0
version/plone/2.0.1
version/plone/2.0.2
version/plone/2.0.3
version/plone/2.0.4
version/plone/2.0.5
version/plone/2.0.6
version/plone/2.0.7
version/plone/2.0.8
version/plone/2.0.9
version/plone/2.0.10
version/plone/2.0.11
version/plone/2.0.12
version/plone/2.0.13
version/plone/2.0.14
version/plone/2.0.15
version/plone/2.0.16
version/plone/2.0.17
version/plone/2.0.18
version/plone/2.0.19
version/plone/2.1.0
version/plone/2.1.1
version/plone/2.1.2
version/plone/2.1.3
version/plone/2.1.4
version/plone/2.1.5
version/plone/2.1.6
version/plone/2.2.0
version/plone/2.2.1
version/plone/2.2.2
version/plone/2.2.3
version/plone/2.2.4
version/plone/2.2.5
version/plone/2.2.6
version/plone/2.2.7
version/plone/2.2.8
version/plone/2.2.9
version/plone/2.2.10
version/plone/2.2.11
version/plone/2.2.12
version/plone/2.3
version/plone/2.3.0
version/plone/2.3.1
version/plone/2.3.2
version/plone/2.3.3
version/plone/2.3.4
version/plone/2.3.5
version/plone/2.3.6
version/plone/2.3.7
version/plone/2.3.8
version/plone/2.3.9
version/plone/2.3.10
version/plone/2.3.11
version/plone/2.3.12
version/plone/2.3.13
version/plone/2.3.14
version/plone/2.3.15
version/plone/2.3.16
version/plone/2.3.17
version/plone/2.3.18
version/plone/2.3.19
version/plone/2.4
version/plone/2.4.0
version/plone/2.4.1
version/plone/2.4.2
version/plone/2.4.3
version/plone/2.4.4
version/plone/2.4.5
version/plone/2.4.6
version/plone/2.4.7
version/plone/2.4.8
version/plone/2.4.9
version/plone/2.4.10
version/plone/2.4.11
version/plone/2.4.12
version/plone/2.4.13
version/plone/2.4.14
version/plone/2.4.15
version/plone/2.5.0
version/plone/2.5.1
version/plone/2.5.2
version/plone/2.5.3
version/plone/2.5.4
version/plone/2.5.5
version/plone/2.5.6
version/plone/2.5.7
version/plone/2.5.8
version/plone/2.5.9
version/plone/2.5.10
version/plone/2.5.11
version/plone/2.5.12
version/plone/2.6
version/plone/2.6.0
version/plone/2.6.1
version/plone/2.6.2
version/plone/2.6.3
version/plone/2.6.4
version/plone/2.6.5
version/plone/2.6.6
version/plone/2.6.7
version/plone/2.6.8
version/plone/2.6.9
version/plone/2.7.0
version/plone/2.7.1
version/plone/2.7.2
version/plone/2.7.3
version/plone/2.8.0
version/plone/2.8.1
version/plone/2.8.2