Pegasus Mail POP3 Trace Reply Overflow

2005-12-20T09:18:08
ID OSVDB:21842
Type osvdb
Reporter Tan Chew Keong(vuln@secunia.com)
Modified 2005-12-20T09:18:08

Description

Vulnerability Description

A remote overflow exists in Pegasus Mail. Pegasus Mail fails to check the length of trace messages from POP3 servers when downloading messages, resulting in a stack overflow. With a specially crafted request, an attacker can cause arbitrary code execution resulting in a loss of confidentiality, and integrity.

Solution Description

Upgrade to version 4.3 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

A remote overflow exists in Pegasus Mail. Pegasus Mail fails to check the length of trace messages from POP3 servers when downloading messages, resulting in a stack overflow. With a specially crafted request, an attacker can cause arbitrary code execution resulting in a loss of confidentiality, and integrity.

References:

Vendor Specific Advisory URL Security Tracker: 1015385 Secunia Advisory ID:17992 Related OSVDB ID: 21843 Other Advisory URL: http://secunia.com/secunia_research/2005-61/advisory/ Mail List Post: http://archives.neohapsis.com/archives/fulldisclosure/2005-12/1034.html CVE-2005-4444 Bugtraq ID: 15973