Test Kennung:	1.3.6.1.4.1.25623.1.0.900840
Kategorie:	Denial of Service
Titel:	SurgeMail 'APPEND' Command Buffer Overflow Vulnerability
Zusammenfassung:	This host is running SurgeMail and is prone to Buffer Overflow; vulnerability.
Beschreibung:	Summary: This host is running SurgeMail and is prone to Buffer Overflow vulnerability. Vulnerability Insight: Buffer overflow in the IMAP service is caused due the way it handles the APPEND command which can be exploited via a long first argument. Vulnerability Impact: Successful exploitation could allow remote authenticated users to cause a Denial of Service and possibly execute arbitrary code in the victim's system. Affected Software/OS: SurgeMail version prior to 3.9g2 Solution: Upgrade to SurgeMail version 3.9g2 or later. CVSS Score: 4.0 CVSS Vector: AV:N/AC:L/Au:S/C:N/I:N/A:P
Querverweis:	BugTraq ID: 30000 Common Vulnerability Exposure (CVE) ID: CVE-2008-7182 http://www.securityfocus.com/bid/30000 Bugtraq: 20080917 [AJECT] SurgeMail IMAP 3.9e vulnerability (Google Search) http://www.securityfocus.com/archive/1/496482 https://www.exploit-db.com/exploits/5968 http://www.netwinsite.com/surgemail/help/updates.htm
Copyright	Copyright (C) 2009 Greenbone Networks GmbH

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.