15 matches found
GNU Mailutils: Privilege escalation
Background The GNU Mailutils are a collection of mail-related utilities, including an IMAP4 server imap4d. Description GNU Mailutils runs maidag by default with setuid root permissions. Impact An attacker can use this to write to arbitrary files as root. Workaround There is no known workaround at...
Ipswitch IMail Server Detection
Detection of installed version of Ipswitch IMail Server. This script check the presence of Ipswitch IMail Server from the banner. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
Ipswitch IMAIL 11.01 reversible encryption + weak ACL
Exploit for unknown platform in category dos / poc ===================================================== Ipswitch IMAIL 11.01 reversible encryption + weak ACL ===================================================== 0x00 : Vulnerability Information + Product : IMail Server + Version : 11.01 + Vendor...
CVE-2007-3510.pl.txt
!perl "IBM Lotus Domino" IMAP4 Server 'LSUB' Command Exploit Author: Manuel Santamarina Suarez e-Mail: [email protected] use IO::Socket; use File::Basename; destination TCP port $port = 143; SE handler You can only use HEX values from 0x20 to 0x7e! printable ASCII characters You must use a...
IBM Lotus Domino 7.0.2FP1 - IMAP4 Server LSUB Command
!perl "IBM Lotus Domino" IMAP4 Server 'LSUB' Command Exploit Author: Manuel Santamarina Suarez e-Mail: [email protected] use IO::Socket; use File::Basename; destination TCP port $port = 143; SE handler You can only use HEX values from 0x20 to 0x7e! printable ASCII characters You must use a...
IBM Lotus Domino 7.0.2FP1 - IMAP4 Server LSUB Command
IBM Lotus Domino 7.0.2FP1 - IMAP4 Server LSUB Command !perl "IBM Lotus Domino" IMAP4 Server 'LSUB' Command Exploit Author: Manuel Santamarina Suarez e-Mail: [email protected] use IO::Socket; use File::Basename; destination TCP port $port = 143; SE handler You can only use HEX values from 0x20 to...
Lotus Domino IMAP4 Server 6.5.4 Remote Buffer Overflow Exploit
No description provided by source. Lotus Domino IMAP4 Server Release 6.5.4 / Windows 2000 Advanced Server x86 Remote Exploit Vulnerable: IBM Lotus Domino = 7.0.2 && 6.5.5 FP2 tested 6.5.4 Authors: Dominic Chell [email protected] & prdelka Exploitation steps:...
Lotus Domino IMAP4 Server 6.5.4 Remote Buffer Overflow Exploit
Exploit for unknown platform in category remote exploits ============================================================== Lotus Domino IMAP4 Server 6.5.4 Remote Buffer Overflow Exploit ============================================================== Lotus Domino IMAP4 Server Release 6.5.4 / Windows...
Lotus Domino IMAP4 Server 6.5.4 - Remote Buffer Overflow
Lotus Domino IMAP4 Server Release 6.5.4 / Windows 2000 Advanced Server x86 Remote Exploit Vulnerable: IBM Lotus Domino & prdelka Exploitation steps: 1 The instruction "call dword ecx" is performed with user supplied ECX 2 EAX reference our buffer from retaddr onward 3 we put pointer in ECX to a...
IBM Lotus Domino Server 6.5 PRE AUTH Remote Exploit
Exploit for unknown platform in category remote exploits =================================================== IBM Lotus Domino Server 6.5 PRE AUTH Remote Exploit =================================================== !/usr/bin/python IBM Lotus Domino Server 6.5 PRE AUTH Remote Exploit Tested on windo...
IBM Lotus Domino Server 6.5 - Remote Overflow
IBM Lotus Domino Server 6.5 - Remote Overflow !/usr/bin/python IBM Lotus Domino Server 6.5 PRE AUTH Remote Exploit Tested on windows 2003 server SP0. Coded by Mati Aharoni [email protected] http://www.offensive-security.com Notes: Not the the faint of heart. Iris, I love you Skeleton...
Immunity Canvas: DOMINO_CRAM
Name| dominocram ---|--- CVE| CVE-2007-1675 Exploit Pack| CANVAS Description| Lotus Domino IMAP4 Server CRAM-MD5 Stack Overflow Notes| CVE Name: CVE-2007-1675 VENDOR: IBM VersionsAffected: Repeatability: References: http://www.zerodayinitiative.com/advisories/ZDI-07-011.html CVE Url:...
Mailutils: Format string vulnerability in imap4d
Background The GNU Mailutils are a collection of mail-related utilities, including an IMAP4 server imap4d. Description The imap4d server contains a format string bug in the handling of IMAP SEARCH requests. Impact An authenticated IMAP user could exploit the format string error in imap4d to execu...
Mailutils: Multiple vulnerabilities in imap4d and mail
Background GNU Mailutils is a collection of mail-related utilities, including an IMAP4 server imap4d and a Mail User Agent mail. Description infamous41d discovered several vulnerabilities in GNU Mailutils. imap4d does not correctly implement formatted printing of command tags CAN-2005-1523, fails...
imapd4r1 v12.264
Newest RH: OK nimue IMAP4rev1 v12.264 server ready 1 login lcamtuf test 1 OK LOGIN completed 1 list "" AAAAAAAAAAAAAAAAAAAAAAAAAAA...yes, a lot of 'A's ; Program received signal SIGSEGV, Segmentation fault. 0x41414141 in ?? sigh Privledges seems to be dropped, but, anyway, it's nice way to get...