Tabs Laboratories MailCarrier MAIL FROM buffer overflow

2019-03-25T00:00:00
ID SAINT:76644CCBF12F5449E3375E41DB9CAD9D
Type saint
Reporter SAINT Corporation
Modified 2019-03-25T00:00:00

Description

Added: 03/25/2019

Background

Tabs Laboratories MailCarrier is an SMTP server.

Problem

A buffer overflow vulnerability allows remote attackers to execute arbitrary commands by sending a long, specially crafted MAIL FROM command to the SMTP service.

Resolution

Upgrade to a fixed version of MailCarrier, or use a different SMTP server.

References

<https://www.exploit-db.com/exploits/46547>

Platforms

Windows