[Full-disclosure] Secunia Research: MDaemon Insecure Default Directory Permissions

====================================================================== Secunia Research 16/11/2006 - MDaemon Insecure Default Directory Permissions - ====================================================================== Table of Contents Affected...

MDaemon mail server weak permissions

Installation folder allows User group to create files, making it possible to spoof system DLLs with local ones...

MDaemon POP3服务器预认证远程溢出漏洞

Alt-N MDaemon是一款基于Windows的邮件服务程序。 MDaemon POP3服务器在处理USER和APOP命令时存在缓冲区溢出漏洞。如果向USER或APOP命令发送了包含有“@”字符的超长字符串的话，就会触发这个漏洞，导致堆溢出。如果要利用这个漏洞，必须向POP3服务器发送多个USER命令。成功利用这个漏洞的攻击者可能会执行任意代码，具体取决于堆的状态及字符串的长度。 Alt-N MDaemon 9.06 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载： http://www.altn.com PoC for Mdaemon POP3 preauth...

CVE-2006-5709

Unspecified vulnerability in WorldClient in Alt-N Technologies MDaemon before 9.50 has unknown impact and attack vectors related to a "JavaScript exploit."...

CVE-2006-5708

Multiple unspecified vulnerabilities in MDaemon and WorldClient in Alt-N Technologies MDaemon before 9.50 allow attackers to cause a denial of service memory consumption via unspecified vectors resulting in memory leaks...

CVE-2006-5709

Unspecified vulnerability in WorldClient in Alt-N Technologies MDaemon before 9.50 has unknown impact and attack vectors related to a "JavaScript exploit."...

CVE-2006-5708

MDaemon and WorldClient (Alt‑N Technologies MDaemon) before 9.50 are affected by CVE-2006-5708 due to multiple unspecified vulnerabilities that allow a denial of service via memory consumption leading to memory leaks. The issue affects MDaemon and WorldClient prior to version 9.50. Root cause vec...

CVE-2006-5708

Multiple unspecified vulnerabilities in MDaemon and WorldClient in Alt-N Technologies MDaemon before 9.50 allow attackers to cause a denial of service memory consumption via unspecified vectors resulting in memory leaks...

CVE-2006-5708

Multiple unspecified vulnerabilities in MDaemon and WorldClient in Alt-N Technologies MDaemon before 9.50 allow attackers to cause a denial of service memory consumption via unspecified vectors resulting in memory leaks...

CVE-2006-5709

Technical details about CVE-2006-5709 are not publicly provided in the supplied documents. Monitor for updates; no affected products, exploit info, or remediation details are confirmed here.

PT-2006-6396 · Alt N · Mdaemon

Name of the Vulnerable Software and Affected Versions: MDaemon versions prior to 9.50 Description: The issue allows attackers to cause a denial of service, resulting in memory consumption via unspecified vectors, leading to memory leaks. Recommendations: For versions prior to 9.50, update to...

MDaemon POP3 Server < 9.06 (USER) Remote Heap Overflow Exploit

No description provided by source. !/usr/bin/python import sys import struct import socket from time import sleep MDaemon Pre Authentication USER Heap Overflow Code based on Leon Juranic's exploit Coded by muts - [email protected] http://www.hackingdefined.com http://www.remote-exploit.org...

MDaemon WorldClient form2raw.cgi From buffer overflow

Added: 09/18/2006 CVE: CVE-2003-1200 BID: 9317 OSVDB: 3255 Background MDaemon is an e-mail server product for Windows. It includes a web mail component called WorldClient. Problem A buffer overflow in MDaemon WorldClient allows remote command execution by sending a web request for the form2raw.cg...

MDaemon WorldClient form2raw.cgi From buffer overflow

Added: 09/18/2006 CVE: CVE-2003-1200 BID: 9317 OSVDB: 3255 Background MDaemon is an e-mail server product for Windows. It includes a web mail component called WorldClient. Problem A buffer overflow in MDaemon WorldClient allows remote command execution by sending a web request for the form2raw.cg...

MDaemon WorldClient form2raw.cgi From buffer overflow

Added: 09/18/2006 CVE: CVE-2003-1200 BID: 9317 OSVDB: 3255 Background MDaemon is an e-mail server product for Windows. It includes a web mail component called WorldClient. Problem A buffer overflow in MDaemon WorldClient allows remote command execution by sending a web request for the form2raw.cg...

MDaemon WorldClient form2raw.cgi From buffer overflow

Added: 09/18/2006 CVE: CVE-2003-1200 BID: 9317 OSVDB: 3255 Background MDaemon is an e-mail server product for Windows. It includes a web mail component called WorldClient. Problem A buffer overflow in MDaemon WorldClient allows remote command execution by sending a web request for the form2raw.cg...

CVE-2006-4620

The usereditaccount.wdm module in Alt-N WebAdmin 3.2.5 running with MDaemon 9.0.6, and possibly earlier versions, allows remote authenticated domain administrators to gain privileges and obtain access to the system mail queue by modifying the mailbox of the MDaemon user account to use the mailbox...

CVE-2006-4620

The usereditaccount.wdm module in Alt-N WebAdmin 3.2.5 running with MDaemon 9.0.6, and possibly earlier versions, allows remote authenticated domain administrators to gain privileges and obtain access to the system mail queue by modifying the mailbox of the MDaemon user account to use the mailbox...

Alt-N Web Admini MDaemon account hijacking

Administrator of any mail domain can redirect any mail of "MDaemon" system account to any account...

WebAdmin < 3.2.6 MDaemon Account Hijacking

The remote host is running WebAdmin, a web-based remote administration tool for Alt-N MDaemon. According to its banner, the installed version of WebAdmin enables a domain administrator within the default domain to hijack the 'MDaemon' account used by MDaemon when processing remote server and...