McAfee WebShield SMTP Bounce Message Format String

2006-04-03T03:02:41
ID OSVDB:24366
Type osvdb
Reporter Ollie Whitehouse(ollie_whitehouse@symantec.com)
Modified 2006-04-03T03:02:41

Description

Vulnerability Description

WebShield SMTP contains a flaw that may allow a malicious user to execute arbitrary code. The issue is triggered due to a format string error within the construction of bounce messages for non-existent domains. It is possible that the flaw may allow remote code execution resulting in a loss of integrity.

Solution Description

Upgrade to version 4.5 MR2 or higher, as it has been reported to fix this vulnerability. In addition, the vendor has released a patch for some older versions.

Short Description

WebShield SMTP contains a flaw that may allow a malicious user to execute arbitrary code. The issue is triggered due to a format string error within the construction of bounce messages for non-existent domains. It is possible that the flaw may allow remote code execution resulting in a loss of integrity.

References:

Vendor URL: http://www.mcafee.com/us/enterprise/products/anti_virus/internet_gateway/webshield_smtp.html Security Tracker: 1015861 Secunia Advisory ID:19491 Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-04/0043.html Keyword: SYMSA-2006-002 ISS X-Force ID: 25621 FrSIRT Advisory: ADV-2006-1219 CVE-2006-0559 Bugtraq ID: 16742