Ipswitch IMail 5.0 Imapd Buffer Overflow DoS Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/502/info The imapd login process is susceptible to a buffer overflow attack which will crash the service. Telnet to target machine, port 143 OK IMAP4 Server IMail 4.06 X LOGIN glob1 glob2 Where glob1 is 1200 characters an...

imap-brute NSE Script

Performs brute force password auditing against IMAP servers using either LOGIN, PLAIN, CRAM-MD5, DIGEST-MD5 or NTLM authentication. Script Arguments imap-brute.auth authentication mechanism to use LOGIN, PLAIN, CRAM-MD5, DIGEST-MD5 or NTLM passdb, unpwdb.passlimit, unpwdb.timelimit,...

Novell Groupwise Internet Agent IMAP LIST Command Remote Code Execution

Application: PRL Novell Groupwise Internet Agent IMAP LIST Command Remote Code Execution Vulnerability Platforms: Linux Exploitation: Remote code execution CVE Number: Pending Novell TID: 7007151 ZeroDayInitiative: ZDI-10-242 Author: Francis Provencher Protek Research Lab's Blog:...

Novell Groupwise Internet Agent IMAP LIST Command Code Execution

Exploit for linux platform in category dos / poc ======================================================================= Novell Groupwise Internet Agent IMAP LIST Command Remote Code Execution ======================================================================= Application: PRL Novell Groupwis...

Novell Groupwise Internet Agent - IMAP 'LIST' Remote Code Execution

Application: PRL Novell Groupwise Internet Agent IMAP LIST Command Remote Code Execution Vulnerability Platforms: Linux Exploitation: Remote code execution CVE Number: Pending Novell TID: 7007151 ZeroDayInitiative: ZDI-10-242 Author: Francis Provencher Protek Research Lab's Blog:...

Novell Groupwise Internet Agent IMAP LIST Command Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Novell Groupwise Internet Agent. Authentication is not required to exploit this vulnerability. The flaw exists within the IMAP server component which listens by default on TCP port 143. When handli...

CVE-2008-1713

CVE-2008-1713 affects NoticeWare Email Server 4.6.1.0 (MailServer.exe). The vulnerability allows remote attackers to cause an application crash (DoS) by sending a long string to the IMAP port (143/tcp). The connected sources confirm the component and the attack vector, but do not provide a specif...

Microsoft Exchange IMAP命令处理远程拒绝服务漏洞（MS07-026）

Microsoft Exchange Server是一款流行的邮件服务器。 Microsoft Exchange的IMAP服务中负责读取IMAP4服务中文字的代码存在整数溢出漏洞，如果IMAP4服务遇到了特制文字的话，就可能无法正确处理，出现的访问破坏可能导致终止进程。 成功利用这个漏洞可能允许攻击者导致受影响的服务器重启或要求从备份重新安装数据。由于Exchange服务器可能与其他服务器运行在同一进程空间，因此IMAP4组件崩溃还会导致SMTP、POP3、WWW和FTP服务退出。如果要利用这个漏洞，攻击者必须能够创建到IMAP4服务的TCP会话。 Microsoft Exchange...

ZDI-07-011: IBM Lotus Domino IMAP Server CRAM-MD5 Authentication Buffer Overflow Vulnerability

ZDI-07-011: IBM Lotus Domino IMAP Server CRAM-MD5 Authentication Buffer Overflow Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-07-011.html March 28, 2007 -- CVE ID: CVE-2007-1675 -- Affected Vendor: IBM -- Affected Products: IBM Lotus Domino Server 6.5 IBM Lotus Domino Server 7.0 ...

IBM Lotus Domino IMAP Server CRAM-MD5 Authentication Buffer Overflow Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of IBM Lotus Domino Server. Authentication is not required to exploit this vulnerability. The specific flaw exists in the CRAM-MD5 authentication mechanism of nimap.exe which binds by default to TCP...

Mercur Messaging 2005 - IMAP Remote Buffer Overflow

!/bin/perl tested on win2k server SP4 English ATTENTION! If you have an another valid account you must change the offsets this is only a poc use IO::Socket::INET; my $host = shift@ARGV; my $port = 143; my $reply; my $request; my $user = "test"; my $pass = "test"; my $nop = "\x90"x8; my $nop1 =...

mercur-login.pl.txt

!/usr/bin/perl Tested on Windows 2k Sp4 Italian and English version and Win XP Pro SP2 Italian and English version Perl script based on Sami FTP server remote exploit by Critical Security http://www.securityfocus.com/bid/17138 acaro at jervus.it use IO::Socket::INET; use Switch; if @ARGV 2 print...

WorldMail-3.0.pl.txt

Eudora WorldMail 3.0 Windows 2000 Remote System Exploit November 2005 Tested on Windows 2000 Server SP4 infoATcom-winner.com http://www.com-winner.com http://www.com-winner.com/CWCOM/cwc-index/ use IO::Socket::INET; use strict; win32bind - EXITFUNC=seh LPORT=4444 Size=344 Encoder=PexFnstenvSub...

IA eMailServer Corporate Edition Version <= 5.2.2 DoS Exploit

No description provided by source. ===== Start IAeMailServerDOS.pl ===== Usage: IAeMailServerDOS.pl ip IAeMailServerDOS.pl 127.0.0.1 True North Software, Inc. IA eMailServer Corporate Edition Version: 5.2.2. Build: 1051. Download: http://www.tnsoft.com/ use IO::Socket; use strict; my$socket = "";...