4 matches found
CVE-2017-6416
creationtimestamp| type| source ---|---|--- 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/smtp/sysgaugeclientbof.rb 2025-02-06 03:13:43+00:00| seen| MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd 2025-02-23 04:09:59+00:00| seen|...
SysGauge SMTP Validation Buffer Overflow
This module will setup an SMTP server expecting a connection from SysGauge 1.5.18 via its SMTP server validation. The module sends a malicious response along in the 220 service ready response and exploits the client, resulting in an unprivileged shell. This module requires Metasploit:...
CVE-2017-6416
An issue was discovered in SysGauge 1.5.18. A buffer overflow vulnerability in SMTP connection verification leads to arbitrary code execution. The attack vector is a crafted SMTP daemon that sends a long 220 aka "Service ready" string...
CVE-2017-6416
SysGauge 1.5.18 is affected by a buffer overflow in SMTP connection verification, allowing arbitrary code execution via a crafted SMTP daemon that sends an overly long 220 (Service ready) response. The issue is documented in CVE-2017-6416 with references including an exploit module (SysGauge SMTP...