5 matches found
IMail IMAP Service DELETE 命令溢出漏洞
Muts 在 IMail Server 中发现一个安全漏洞, 能被恶意用户利用威胁到系统的安全。 这个漏洞的成因是由于IMAP service "IMAP4D32.exe" 在处理 "DELETE" 命令时没有进行边界检查. 如果用户提交"DELETE"命令时附带超长的参数,约 300 字节 将导致缓冲区溢出。 成功利用者可以执行任意代码。 这个风险在 IMAIL 8.13 版本中发现,其它版本可能也受影响。 IMail Server 8.x 限制使用或暂时停用Imail Server !/usr/bin/perl -w IPSwitch-IMail-8.13-DELETE...
IMail IMAP LOGIN special character vulnerability
Added: 01/04/2006 CVE: CVE-2005-1255 BID: 13727 OSVDB: 16804 Background IMail is a mail server for Windows platforms. It includes SMTP, POP, IMAP, and LDAP services, a web interface, and web calendaring. Problem A remote attacker could execute arbitrary commands by sending a long specially crafte...
IMail IMAP STATUS buffer overflow
Added: 11/29/2005 CVE: CVE-2005-1256 BID: 13727 OSVDB: 16806 Background IMail is a mail server for Windows platforms. It includes SMTP, POP, IMAP, and LDAP services, and a web interface and web calendaring service. Problem A buffer overflow when processing long mailbox names specified in the STAT...
Immunity Canvas: IMAIL_IMAP
Name| imailimap ---|--- CVE| CVE-2005-1255 Exploit Pack| CANVAS Description| IMAIL Imap Notes| CVE Name: CVE-2005-1255 VENDOR: IPSwitch URL: http://www.idefense.com/application/poi/display?id=243&type=vulnerabilities VersionsAffected: IMail 8.13 up to 8.2p1 Repeatability: This is a one shot...
IMail IMAP Server Login Functions Remote Overflow
The remote host is running IMail IMAP server. The installed version is affected by a buffer overflow when handling a long user name, or a long password. An attacker, exploiting this flaw, could cause a denial of service, or possibly execute arbitrary code subject to the permissions of the IMAP...