CMailServer is a mail and web mail server.
The CMailServer web interface includes the
**CMailCOM.dll** component which provides several classes.
A buffer overflow vulnerability in the
**MoveToFolder** method of the POP3 class in
**CMailCOM.dll** allows a remote attacker to execute arbitrary commands by requesting the
**mvmail.asp** script with specially crafted arguments.
Upgrade to version 5.4.7, which will presumably contain a fix, or higher when available.
Exploit works on CMailServer 5.4.6.
In order for this exploit to succeed on Windows XP, the account used for anonymous access must be the IIS guest account (IWAM_XXX).