Stack overflow

Stack-based buffer overflow in the IMAP service in SurgeMail 38k allows remote authenticated users to execute arbitrary code via a long argument to the SEARCH command. NOTE: this might overlap CVE-2007-4372...

CVE-2007-4372

Unspecified vulnerability in NetWin SurgeMail 38k on Windows Server 2003 has unknown impact and remote attack vectors. NOTE: this information is based upon a vague advisory by a vulnerability information sales organization that does not coordinate with vendors or release actionable advisories. A...

CVE-2007-4377

CVE-2007-4377 describes a stack-based buffer overflow in the IMAP service of SurgeMail 38k. An authenticated remote attacker can overflow by sending a long argument to the IMAP SEARCH command, potentially leading to arbitrary code execution. Some sources note affected versions older than 3.8k2/3....

CVE-2007-4372

CVE-2007-4372 relates to NetWin SurgeMail 38k on Windows Server 2003 with an unspecified vulnerability and unknown impact/remote vectors per the NVD entry (notes indicate vague advisory origins). Related records also describe CVE-2007-4377 as a separate vulnerability: a stack-based buffer overflo...