1
SMTP Smuggling - Spoofing E-Mails Worldwide
Question asked by Sabatino - 12/21/2023 at 2:22 AM
Answered
What do you think?

Is SM vulnerable to this?
Sabatino Traini
      Chief Information Officer
Genial s.r.l. 
Martinsicuro - Italy

1 Reply

Reply to Thread
4
Matt Petty Replied
Employee Post Marked As Answer
Based on my testing yesterday our SMTP inbound server is not affected by this, we properly separate out the end of messages in all the demonstrated cases inside the report. It's kind of against RFC but it protected us from having the issue. We interpret all different iterations of <CRLF>.<CRLF>, including ignoring special null characters. This causes each message to be treated individually.

I'm going to be doing some additional checks to make sure our outbound SMTP server isn't affected some how by messages sent internally bypassing the SMTP server (messages from webmail) but we are not affected by the main issue with the inbound SMTP server not understanding message separations and all the different forms it can appear.
Matt Petty Software Developer SmarterTools Inc. www.smartertools.com

Reply to Thread