PYSEC-2010-4

Multiple directory traversal vulnerabilities in FTPServer.py in pyftpdlib before 0.3.0 allow remote authenticated users to access arbitrary files and directories via vectors involving a symlink in a pathname to a 1 CWD, 2 DELE, 3 STOR, or 4 RETR command...

IPSwitch IMail IMAP4D - Delete Overflow (Metasploit)

$Id: imaildelete.rb 10394 2010-09-20 08:06:27Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/...

Addonics NAS Adapter FTP - Remote Denial of Service

!/usr/bin/python Addonics NAS Adapter FTP server DoS Tested against NASU2FW41 Loader 1.17 Coded by Mike Cyr, aka h00die mcyr2 at csc dotcom Notes: Since the HTTP server was so vulnerable, is this really a suprise? Greetz to muts and loganWHD, I tried harder...

DEBIAN-CVE-2008-6235

The Netrw plugin netrw.vim in Vim 7.0 and 7.1 allows user-assisted attackers to execute arbitrary commands via shell metacharacters in a filename used by the 1 "D" delete command or 2 b:netrwcurdir variable, as demonstrated using the netrw.v4 and netrw.v5 test cases...

plugin: lack of sanitization throughout netrw.vim can lead to arbitrary code execution

The Netrw plugin netrw.vim in Vim 7.0 and 7.1 allows user-assisted attackers to execute arbitrary commands via shell metacharacters in a filename used by the 1 "D" delete command or 2 b:netrwcurdir variable, as demonstrated using the netrw.v4 and netrw.v5 test cases...

IMail IMAP Service DELETE 命令溢出漏洞

Muts 在 IMail Server 中发现一个安全漏洞, 能被恶意用户利用威胁到系统的安全。 这个漏洞的成因是由于IMAP service "IMAP4D32.exe" 在处理 "DELETE" 命令时没有进行边界检查. 如果用户提交"DELETE"命令时附带超长的参数，约 300 字节 将导致缓冲区溢出。 成功利用者可以执行任意代码。 这个风险在 IMAIL 8.13 版本中发现，其它版本可能也受影响。 IMail Server 8.x 限制使用或暂时停用Imail Server !/usr/bin/perl -w IPSwitch-IMail-8.13-DELETE...

MailEnable IMAP Server multiple security vulnerabilities

Buffer overflow in EXAMINE, SELECT, DELETE commands...

CVE-2006-6291

Stack overflow in the IMAP module MEIMAPS.EXE in MailEnable Professional 1.6 through 1.83 and 2.0 through 2.33, and MailEnable Enterprise 1.1 through 1.40 and 2.0 through 2.33, allows remote authenticated users to cause a denial of service crash via a long argument containing asterisk and ?...

IMail IMAP DELETE command buffer overflow

Added: 06/01/2006 CVE: CVE-2004-1520 BID: 11675 OSVDB: 11838 Background IMail is an e-mail server for Windows platforms. Problem A buffer overflow in the IMAP service could allow remote attackers to execute commands by sending a long, specially crafted DELETE command. The attacker would need to...

DEBIAN-CVE-2006-2414

Directory traversal vulnerability in Dovecot 1.0 beta and 1.0 allows remote attackers to list files and directories under the mbox parent directory and obtain mailbox names via ".." sequences in the 1 LIST or 2 DELETE IMAP command...

IMail IMAP4D Delete Overflow

This module exploits a buffer overflow in the 'DELETE' command of the IMail IMAP4D service. This vulnerability can only be exploited with a valid username and password. This flaw was patched in version 8.14. This module requires Metasploit: https://metasploit.com/download Current source:...

IPSwitch IMAIL Mail server IMAP buffer overflow

Buffer overflow in IMAP DELETE and EXAMINE commands...

CVE-2004-1520

CVE-2004-1520 involves a stack-based buffer overflow in the Ipswitch IMail IMAP4D service caused by processing an excessively long DELETE command. It requires a valid IMAP login and password (authenticated access) and can lead to remote code execution with the privileges of the IMAP4d process; im...

CVE-2004-1520

Stack-based buffer overflow in IPSwitch IMail 8.13 allows remote authenticated users to execute arbitrary code via a long IMAP DELETE command...

CVE-2004-1520

Stack-based buffer overflow in IPSwitch IMail 8.13 allows remote authenticated users to execute arbitrary code via a long IMAP DELETE command...

IPSwitch-IMail-8.13-DELETE.pl

!/usr/bin/perl -w IPSwitch-IMail-8.13-DELETE Discovered by : Muts Coded by : Zatlander WWW.WHITEHAT.CO.IL Plain vanilla stack overflow in the DELETE command Restrictions: - Need valid authentication credentials - Input buffer only allows characters between x20 - x7e Credits: -...

IPSwitch-IMail-8.13 Stack Overflow in the DELETE Command

!/usr/bin/perl -w IPSwitch-IMail-8.13-DELETE Discovered by : Muts Coded by : Zatlander WWW.WHITEHAT.CO.IL Plain vanilla stack overflow in the DELETE command Restrictions: - Need valid authentication credentials - Input buffer only allows characters between x20 - x7e Credits: -...

IPSwitch IMail 8.13 (DELETE) Remote Stack Overflow Exploit

Exploit for unknown platform in category remote exploits ========================================================== IPSwitch IMail 8.13 DELETE Remote Stack Overflow Exploit ========================================================== !/usr/bin/perl -w IPSwitch-IMail-8.13-DELETE Discovered by : Muts...

IPSwitch IMail 8.13 (DELETE) Remote Stack Overflow Exploit

No description provided by source. !/usr/bin/perl -w IPSwitch-IMail-8.13-DELETE Discovered by : Muts Coded by : Zatlander WWW.WHITEHAT.CO.IL Plain vanilla stack overflow in the DELETE command Restrictions: - Need valid authentication credentials - Input buffer only allows characters between x20 -...

IPSwitch IMail 8.13 - DELETE Remote Stack Overflow

IPSwitch IMail 8.13 - DELETE Remote Stack Overflow !/usr/bin/perl -w IPSwitch-IMail-8.13-DELETE Discovered by : Muts Coded by : Zatlander WWW.WHITEHAT.CO.IL Plain vanilla stack overflow in the DELETE command Restrictions: - Need valid authentication credentials - Input buffer only allows characte...