QwikMail 0.3 HELO Command Buffer Overflow Vulnerability

No description provided by source. source: www.securityfocus.com/bid/11989/info QwikMail qwik-smtpd is reported prone to a remotely exploitable buffer overflow vulnerability. The issue is due to insufficient bounds checking of client-supplied SMTP HELO request data. This issue could theoretically...

CVE-2004-2677

CVE-2004-2677 affects QwikMail SMTP (qwik-smtpd) version 0.3 and earlier. The flaw is a format string vulnerability in qwik-smtpd.c that allows remote attackers to achieve arbitrary code execution via format specifiers in the (1) clientRcptTo array, and the (2) Received and (3) messageID variable...

CVE-2004-2677

Format string vulnerability in qwik-smtpd.c in QwikMail SMTP qwik-smtpd 0.3 and earlier allows remote attackers to execute arbitrary code via format specifiers in the 1 clientRcptTo array, and the 2 Received and 3 messageID variables, possibly involving HELO and hostname arguments...

CVE-2004-2677

Format string vulnerability in qwik-smtpd.c in QwikMail SMTP qwik-smtpd 0.3 and earlier allows remote attackers to execute arbitrary code via format specifiers in the 1 clientRcptTo array, and the 2 Received and 3 messageID variables, possibly involving HELO and hostname arguments...

QwikMail 0.3 - 'HELO' Buffer Overflow (PoC)

source: www.securityfocus.com/bid/11989/info QwikMail qwik-smtpd is reported prone to a remotely exploitable buffer overflow vulnerability. The issue is due to insufficient bounds checking of client-supplied SMTP HELO request data. This issue could theoretically be exploited to execute arbitrary...