|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
[sec-adv] MailMAX Buffer Overflow in IMAPMax Module
From: Secunia Security Advisories (sec-adv
secunia.com)
Date: Wed May 21 2003 - 06:14:37 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
TITLE:
MailMAX Buffer Overflow in IMAPMax Module
READ ONLINE:
http://www.secunia.com/advisories/8822/
CRITICAL:
Moderately critical
IMPACT:
DoS, System access
WHERE:
From remote
SOFTWARE:
MailMax 5.x
DESCRIPTION:
A vulnerability has been reported in MailMax, which can be exploited
by a malicious person to conduct a Denial of Service and possibly
execute arbitrary code on a vulnerable system.
The vulnerability is caused due to a boundary error in the included
IMAPMax module. A malicious person can exploit this by supplying a
long, specially crafted argument to the "SELECT" command after
authentication, which can result in execution of arbitrary code with
SYSTEM privileges.
Version 5.0.10.8 has been reported vulnerable.
SOLUTION:
Version 5.5 is not vulnerable:
http://www.smartmax.com/
REPORTED BY / CREDITS:
Matrix at 0x36.org
----------------------------------------------------------------------
Secunia recommends that you verify all advisories you receive, by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.
Contact details:
Web : http://www.secunia.com/
E-mail : supportsecunia.com
Tel : +44 (0) 20 7016 2693
Fax : +44 (0) 20 7637 0419
----------------------------------------------------------------------
Unsubscribe: Secunia Security Advisories
----------------------------------------------------------------------
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]