|
Family: Gain a shell remotely --> Category: infos
qpopper Qvsnprintf buffer overflow Vulnerability Scan
Vulnerability Scan Summary qpopper options buffer overflow
Detailed Explanation for this Vulnerability Test
The remote qpopper server, according to its banner, is
vulnerable to a one-byte overflow it its function
Qvsnprintf().
A possible hacker may use this flaw to gain a (non-root)
shell on this host, provided that he has a valid
POP account to log in with.
*** This test could not confirm the existence of the
*** problem - it relied on the banner being returned.
Solution : Upgrade to version 4.0.5cf2 or newer
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|