|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
CommuniGatePro 3.1 for NT Buffer Overflow
Subject: CommuniGatePro 3.1 for NT Buffer Overflow
From: Nobuo Miwa (n-miwa
LAC.CO.JP)
Date: Fri Dec 03 1999 - 17:46:41 CST
- Next message: Jeremy Kothe: "new IE5 remote exploit"
- Previous message: George: "NTmail and VRFY"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Hello,
I reported a buffer overflow problem on CommuniGatePro 3.1 for NT
to supportstalker.com. And they've fixed immediately.
It's simple buffer overflow, actually.
1. connect to port 8010 (http configuration from remote browser)
2. send 70000 of 'a' + "\r\n"
3. connect to any port(25,8010,..) just like "telnet server 25"
4. Access violation
Their reply is following..
Fixed in the current 3.2 betas. Please install either the 3.2b5 or the
3.2b7 that should be out by Monday - 3.2b6 had many internal changes
and a couple of bugs have been found there.
<Nobuo Miwa> n-miwalac.co.jp ( ) http://www.lac.co.jp/security/
--------------------------o00o--(. .)--o00o--------------------------
- Next message: Jeremy Kothe: "new IE5 remote exploit"
- Previous message: George: "NTmail and VRFY"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
This archive was generated by hypermail 2b27 : Mon Dec 06 1999 - 23:44:41 CST