322 matches found
kms1.py.txt
Hi, Kerio MailServer 6.3.1 changelog mentions the following bug fix: 'Fixed possible service stop when handling certain LDAP query' It turns out that vdkms6 vulnerability which is a part of VulnDisco since Oct, 2006 has been fixed. Below is a simple proof of concept code for this bug: !/usr/bin/e...
CVE-2006-6554
Unspecified vulnerability in Kerio MailServer before 6.3.1 allows remote attackers to cause a denial of service segmentation fault and service stop via certain long LDAP queries, as demonstrated by vdkms6.pm...
CVE-2006-6554
Unspecified vulnerability in Kerio MailServer before 6.3.1 allows remote attackers to cause a denial of service segmentation fault and service stop via certain long LDAP queries, as demonstrated by vdkms6.pm...
CVE-2006-6554
CVE-2006-6554 affects Kerio MailServer prior to 6.3.1. The issue is a denial-of-service: remote attackers can trigger a segmentation fault and service stoppage by sending certain long LDAP search queries (as demonstrated by vd_kms6.pm). What is affected: Kerio MailServer’s LDAP handling component...
Kerio MailServer 6.2.2 preauth Remote Denial of Service PoC
No description provided by source. !/usr/bin/env python kms1.py - Kerio MailServer 6.2.2 preauth remote DoS fixed in Kerio MailServer 6.3.1 Copyright c 2006 Evgeny Legerov Permission to use, copy, modify, and distribute this software for any purpose with or without fee is hereby granted, provided...
Kerio MailServer 6.2.2 preauth Remote Denial of Service PoC
Exploit for linux platform in category dos / poc =========================================================== Kerio MailServer 6.2.2 preauth Remote Denial of Service PoC =========================================================== !/usr/bin/env python kms1.py - Kerio MailServer 6.2.2 preauth remote...
Kerio MailServer 6.2.2 - Remote Denial of Service (PoC)
!/usr/bin/env python kms1.py - Kerio MailServer 6.2.2 preauth remote DoS fixed in Kerio MailServer 6.3.1 Copyright c 2006 Evgeny Legerov Permission to use, copy, modify, and distribute this software for any purpose with or without fee is hereby granted, provided that the above copyright notice an...
Kerio MailServer 6.2.2 - Remote Denial of Service (PoC)
Kerio MailServer 6.2.2 - Remote Denial of Service PoC !/usr/bin/env python kms1.py - Kerio MailServer 6.2.2 preauth remote DoS fixed in Kerio MailServer 6.3.1 Copyright c 2006 Evgeny Legerov Permission to use, copy, modify, and distribute this software for any purpose with or without fee is hereb...
CVE-2006-6201
Heap-based buffer overflow in Borland idsql32.dll 5.1.0.4, as used by RevilloC MailServer; 5.2.0.2 as used by Borland Developer Studio 2006; and possibly other versions allows remote attackers to execute arbitrary code via a long SQL statement, related to use of the DbiQExec function...
Kerio MailServer 5.x/6.x - Remote LDAP Denial of Service
source: https://www.securityfocus.com/bid/21091/info Kerio MailServer is prone to a denial-of-service vulnerability due to a flaw when handling malformed network traffic. Successful exploits will result in denial-of-service conditions. !/usr/bin/env python kms1.py - Kerio MailServer 6.2.2 preauth...
Kerio MailServer 5.x6.x - Remote LDAP Denial of Service
Kerio MailServer 5.x6.x - Remote LDAP Denial of Service source: https://www.securityfocus.com/bid/21091/info Kerio MailServer is prone to a denial-of-service vulnerability due to a flaw when handling malformed network traffic. Successful exploits will result in denial-of-service conditions...
CVE-2006-5812
Unspecified vulnerability in Kerio MailServer allows attackers to cause a denial of service, as demonstrated by vdkms4.pm, a "Kerio MailServer DoS." NOTE: As of 20061108, this disclosure has no actionable information. However, since it is from a reliable researcher, it is being assigned a CVE...
CVE-2006-5812
CVE-2006-5812 concerns an unspecified vulnerability in Kerio MailServer that allows denial of service, demonstrated by vd_kms4.pm. The initial disclosure notes no actionable information as of 20061108, and the connected documents provide no concrete exploit details or fixes. No remediation detail...
CVE-2006-5812
Unspecified vulnerability in Kerio MailServer allows attackers to cause a denial of service, as demonstrated by vdkms4.pm, a "Kerio MailServer DoS." NOTE: As of 20061108, this disclosure has no actionable information. However, since it is from a reliable researcher, it is being assigned a CVE...
RevilloC MailServer远程畸形SMTP请求缓冲区溢出漏洞
RevilloC MailServer是一款免费的SMTP和POP3邮件服务器。 RevilloC MailServer在处理带有超长畸形参数的命令时存在缓冲区溢出漏洞,远程攻击者可能利用此漏洞在服务器上执行任意指令。 如果通过“MAIL FOR:”、“RCPT TO:”或其他一些命令向服务器发送超长请求(4080字节)的话,就能导致耗尽99%的CPU使用率,计算机会变得完全没有响应;此外,发送4088字节的请求会触发堆溢出,用畸形报文的值覆盖EDI、EBX、EAX和ECX,导致执行任意指令。 RevilloC MailServer 1.21...
CVE-2006-5552
Multiple heap-based buffer overflows in RevilloC MailServer 1.21 and earlier allow remote attackers to cause a denial of service CPU consumption or application crash or execute arbitrary code via a long argument to the 1 MAIL FROM or 2 RCPT TO command...
CVE-2006-5552
RevilloC MailServer
CVE-2006-5552
Multiple heap-based buffer overflows in RevilloC MailServer 1.21 and earlier allow remote attackers to cause a denial of service CPU consumption or application crash or execute arbitrary code via a long argument to the 1 MAIL FROM or 2 RCPT TO command...
EUVD-2006-5537
Multiple heap-based buffer overflows in RevilloC MailServer 1.21 and earlier allow remote attackers to cause a denial of service CPU consumption or application crash or execute arbitrary code via a long argument to the 1 MAIL FROM or 2 RCPT TO command...
RevilloC MailServer 1.x (RCPT TO) Remote Denial of Service Exploit
No description provided by source. / ============================================================= 0-day RCPT TO DoS Exploit for RevilloC SMTP version 1.x ============================================================= Sending a large buffer 4080 bytes in conjunction with the "MAIL FOR:" or "RCPT...